English | Deutsch | Español | Português
 UserID:
 Passwd:
new user
 About:   Dedicated  | Advanced  | Standard  | Recurring  | No Risk  | Desktop  | Basic  | Single  | Security Seal  | FAQ
  Price/Feature Summary  | Order  | New Vulnerabilities  | Confidentiality  | Vulnerability Search
 Vulnerability   
Search   
    Search 143769 CVE descriptions
and 71225 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 --------------------------------------------------------------------------
   Turbolinux Security Advisory TLSA-2005-25
   http://www.turbolinux.co.jp/security/
                                             security-team@turbolinux.co.jp
 --------------------------------------------------------------------------

 Original released date: 17 Feb 2005
 Last revised: 09 Mar 2005

 Package: cups

 Summary: Multiple vulnerabilities exist in CUPS

 More information:
    The Common UNIX Printing System provides a portable printing layer for
    UNIX operating systems.  It has been developed by Easy Software Products
    to promote a standard printing solution for all UNIX vendors and users.
    CUPS provides the System V and Berkeley command-line interfaces.

    Multiple vulnerabilities exist in CUPS:
    - A buffer overflow vulnerability in hpgltops's ParseCommand function.
    - The lppasswd command can corrupt the CUPS password file.

 Impact:
    The vulnerability can allow remote attackers to cause a denial of
    service or possibly execute arbitrary code.

    An attacker could use lppasswd to corrupt the CUPS password file.

 Affected Products:
    - Turbolinux Appliance Server 1.0 Hosting Edition
    - Turbolinux Appliance Server 1.0 Workgroup Edition
    - Turbolinux 10 Server
    - Turbolinux Home
    - Turbolinux 10 F...
    - Turbolinux 10 Desktop
    - Turbolinux 8 Server
    - Turbolinux 8 Workstation

 Solution:
    Please use the turbopkg (zabom) tool to apply the update. 
 ---------------------------------------------
 [Turbolinux 10 Server, Turbolinux 10 Desktop, Turbolinux 10 F..., 
  Turbolinux Home]
 # turbopkg
 or
 # zabom -u cups cups-devel cups-libs

 [other]
 # turbopkg
 or
 # zabom update cups cups-devel cups-libs
 ---------------------------------------------


 <Turbolinux Appliance Server 1.0 Hosting Edition>

   Source Packages
   Size: MD5

   cups-1.1.19-24.src.rpm
      4198430 b41dc5402e78e386dd5461580762a0fd

   Binary Packages
   Size: MD5

   cups-1.1.19-24.i586.rpm
      2497610 afde590331f0515ada00c1007208f384
   cups-libs-1.1.19-24.i586.rpm
        92911 02785e423cc09b7a83999911f56d0fa0

 <Turbolinux Appliance Server 1.0 Workgroup Edition>

   Source Packages
   Size: MD5

   cups-1.1.19-24.src.rpm
      4198430 de315bdc0aa4f2dd15ee59fcd86b0a79

   Binary Packages
   Size: MD5

   cups-1.1.19-24.i586.rpm
      2497362 e0d2bb643eac572c92b0f7927f998c4f
   cups-devel-1.1.19-24.i586.rpm
       115395 b133b90990a35393c6bb333d2a9de103
   cups-libs-1.1.19-24.i586.rpm
        93112 1f226f121f3d20906a807f5bff9e5c7c

 <Turbolinux 10 Server>

   Source Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/10/updates/SRPMS/cups-1.1.20-4.src.rpm
      4209480 1893c42f2d988289b7f3efcfaa8f92fd

   Binary Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/10/updates/RPMS/cups-1.1.20-4.i586.rpm
      2509495 d4e6a2bfe4f970891500391b18a8ee6a
   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/10/updates/RPMS/cups-devel-1.1.20-4.i586.rpm
       126141 16eab584bfaef5716e6bdb94c05af1b6
   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/10/updates/RPMS/cups-libs-1.1.20-4.i586.rpm
        86996 23b51c6f77c3369ab5479a19560a2254

 <Turbolinux 10 Desktop, Turbolinux 10 F..., Turbolinux Home>

   Source Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/updates/SRPMS/cups-1.1.19-24.src.rpm
      4198430 6d978664a252ad2ad73030697789011d

   Binary Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/updates/RPMS/cups-1.1.19-24.i586.rpm
      2510322 23991c4ef019c61d756937916cbeafa3
   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/updates/RPMS/cups-devel-1.1.19-24.i586.rpm
       117551 cd92457effa1e339d2894795fb3ada25
   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/updates/RPMS/cups-libs-1.1.19-24.i586.rpm
        87167 32a6aff812664aed652c5e47775adc5d

 <Turbolinux 8 Server>

   Source Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/8/updates/SRPMS/cups-1.1.19-24.src.rpm
      4198430 9d5699a0bf796d2190fed35976e44d42

   Binary Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/8/updates/RPMS/cups-1.1.19-24.i586.rpm
      2497921 efa944844e207022dadf226cf079bde7
   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/8/updates/RPMS/cups-devel-1.1.19-24.i586.rpm
       115420 51098c8793c272287bd35851084c5a17
   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/8/updates/RPMS/cups-libs-1.1.19-24.i586.rpm
        93056 e9f1c20a3fe7c9c420d88ffb5feee521

 <Turbolinux 8 Workstation>

   Source Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Workstation/8/updates/SRPMS/cups-1.1.19-24.src.rpm
      4198430 af495b77c88e199e5dc40f8b841006ab

   Binary Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Workstation/8/updates/RPMS/cups-1.1.19-24.i586.rpm
      2497951 af0beae7781931d40ea3ae42a9b4c3f2
   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Workstation/8/updates/RPMS/cups-devel-1.1.19-24.i586.rpm
       115417 2aa0e31903151332316ae9ba7eb811d4
   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Workstation/8/updates/RPMS/cups-libs-1.1.19-24.i586.rpm
        93129 1bdeb0d1c65f061fffac6907c54e6b9d


 References:

 CVE
   [CAN-2004-1267]
   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1267
   [CAN-2004-1268]
   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1268
   [CAN-2004-1269]
   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1269
   [CAN-2004-1270]
   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1270

 --------------------------------------------------------------------------
 Revision History
    17 Feb 2005 Initial release
    09 Mar 2005 Added cups-devel for Turbolinux Appliance Server 1.0 Workgroup Edition
 --------------------------------------------------------------------------

 Copyright(C) 2005 Turbolinux, Inc. All rights reserved. 

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.7 (GNU/Linux)

iD8DBQFCLlmBK0LzjOqIJMwRAg5+AJ45iLV07bPbyu+2tv55PI4trsiLiQCgvT0f
TXOu4GziNe+Do+6vRgwTlVc=
=qjc+
-----END PGP SIGNATURE-----

New User Registration
Email:
UserID:
Passwd:
Please email me your monthly newsletters, informing the latest services, improvements & surveys.
Please email me a vulnerability test announcement whenever a new test is added.
   Privacy
Registered User Login
 
UserID:   
Passwd:  

 Forgot userid or passwd?
Email/Userid:




Home | About Us | Contact Us | Partner Programs | Developer APIs | Privacy | Mailing Lists | Abuse
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe

© 1998-2019 E-Soft Inc. All rights reserved.