Test ID:	1.3.6.1.4.1.25623.1.0.66968
Category:	Red Hat Local Security Checks
Title:	RedHat Security Advisory RHSA-2010:0129
Summary:	NOSUMMARY
Description:	Description: The remote host is missing updates announced in advisory RHSA-2010:0129. The Common UNIX Printing System (CUPS) provides a portable printing layer for UNIX operating systems. It was discovered that the Red Hat Security Advisory RHSA-2009:1595 did not fully correct the use-after-free flaw in the way CUPS handled references in its file descriptors-handling interface. A remote attacker could send specially-crafted queries to the CUPS server, causing it to crash. (CVE-2010-0302) Users of cups are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. After installing the update, the cupsd daemon will be restarted automatically. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2010-0129.html http://www.redhat.com/security/updates/classification/#moderate Risk factor : Medium CVSS Score: 5.0
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2010-0302 1024124 http://www.securitytracker.com/id?1024124 38510 http://www.securityfocus.com/bid/38510 38785 http://secunia.com/advisories/38785 38927 http://secunia.com/advisories/38927 38979 http://secunia.com/advisories/38979 40220 http://secunia.com/advisories/40220 ADV-2010-1481 http://www.vupen.com/english/advisories/2010/1481 APPLE-SA-2010-06-15-1 http://lists.apple.com/archives/security-announce/2010//Jun/msg00001.html FEDORA-2010-2743 http://lists.fedoraproject.org/pipermail/package-announce/2010-March/037174.html GLSA-201207-10 http://security.gentoo.org/glsa/glsa-201207-10.xml MDVSA-2010:073 http://www.mandriva.com/security/advisories?name=MDVSA-2010:073 RHSA-2010:0129 https://rhn.redhat.com/errata/RHSA-2010-0129.html USN-906-1 http://www.ubuntu.com/usn/USN-906-1 http://cups.org/articles.php?L596 http://cups.org/str.php?L3490 http://support.apple.com/kb/HT4188 https://bugzilla.redhat.com/show_bug.cgi?id=557775 oval:org.mitre.oval:def:11216 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11216 Common Vulnerability Exposure (CVE) ID: CVE-2009-3553 275230 http://sunsolve.sun.com/search/document.do?assetkey=1-66-275230-1 37048 http://www.securityfocus.com/bid/37048 37360 http://secunia.com/advisories/37360 37364 http://secunia.com/advisories/37364 38241 http://secunia.com/advisories/38241 43521 http://secunia.com/advisories/43521 ADV-2010-0173 http://www.vupen.com/english/advisories/2010/0173 ADV-2011-0535 http://www.vupen.com/english/advisories/2011/0535 APPLE-SA-2010-01-19-1 http://lists.apple.com/archives/security-announce/2010/Jan/msg00000.html DSA-2176 http://www.debian.org/security/2011/dsa-2176 FEDORA-2009-12652 https://www.redhat.com/archives/fedora-package-announce/2009-December/msg00332.html RHSA-2009:1595 http://www.redhat.com/support/errata/RHSA-2009-1595.html http://support.apple.com/kb/HT4004 http://www.cups.org/newsgroups.php/newsgroups.php?v5994+gcups.bugs http://www.cups.org/newsgroups.php/newsgroups.php?v5996+gcups.bugs http://www.cups.org/newsgroups.php/newsgroups.php?v6055+gcups.bugs http://www.cups.org/str.php?L3200 https://bugzilla.redhat.com/show_bug.cgi?id=530111 oval:org.mitre.oval:def:11183 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11183
Copyright	Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.