CVE Vulnerabilities

CVE-2009-0163

Published: Apr 23, 2009 | Modified: Oct 11, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
5.8 MODERATE
AV:A/AC:L/Au:N/C:P/I:P/A:P
RedHat/V3
Ubuntu
MEDIUM

Integer overflow in the TIFF image decoding routines in CUPS 1.3.9 and earlier allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via a crafted TIFF image, which is not properly handled by the (1) _cupsImageReadTIFF function in the imagetops filter and (2) imagetoraster filter, leading to a heap-based buffer overflow.

Affected Software

Name Vendor Start Version End Version
Cups Apple * 1.3.9 (including)
Cups Apple 1.1 (including) 1.1 (including)
Cups Apple 1.1.1 (including) 1.1.1 (including)
Cups Apple 1.1.2 (including) 1.1.2 (including)
Cups Apple 1.1.3 (including) 1.1.3 (including)
Cups Apple 1.1.4 (including) 1.1.4 (including)
Cups Apple 1.1.5 (including) 1.1.5 (including)
Cups Apple 1.1.5-1 (including) 1.1.5-1 (including)
Cups Apple 1.1.5-2 (including) 1.1.5-2 (including)
Cups Apple 1.1.6 (including) 1.1.6 (including)
Cups Apple 1.1.6-1 (including) 1.1.6-1 (including)
Cups Apple 1.1.6-2 (including) 1.1.6-2 (including)
Cups Apple 1.1.6-3 (including) 1.1.6-3 (including)
Cups Apple 1.1.7 (including) 1.1.7 (including)
Cups Apple 1.1.8 (including) 1.1.8 (including)
Cups Apple 1.1.9 (including) 1.1.9 (including)
Cups Apple 1.1.9-1 (including) 1.1.9-1 (including)
Cups Apple 1.1.10 (including) 1.1.10 (including)
Cups Apple 1.1.10-1 (including) 1.1.10-1 (including)
Cups Apple 1.1.11 (including) 1.1.11 (including)
Cups Apple 1.1.12 (including) 1.1.12 (including)
Cups Apple 1.1.13 (including) 1.1.13 (including)
Cups Apple 1.1.14 (including) 1.1.14 (including)
Cups Apple 1.1.15 (including) 1.1.15 (including)
Cups Apple 1.1.16 (including) 1.1.16 (including)
Cups Apple 1.1.17 (including) 1.1.17 (including)
Cups Apple 1.1.18 (including) 1.1.18 (including)
Cups Apple 1.1.19 (including) 1.1.19 (including)
Cups Apple 1.1.19-rc1 (including) 1.1.19-rc1 (including)
Cups Apple 1.1.19-rc2 (including) 1.1.19-rc2 (including)
Cups Apple 1.1.19-rc3 (including) 1.1.19-rc3 (including)
Cups Apple 1.1.19-rc4 (including) 1.1.19-rc4 (including)
Cups Apple 1.1.19-rc5 (including) 1.1.19-rc5 (including)
Cups Apple 1.1.20 (including) 1.1.20 (including)
Cups Apple 1.1.20-rc1 (including) 1.1.20-rc1 (including)
Cups Apple 1.1.20-rc2 (including) 1.1.20-rc2 (including)
Cups Apple 1.1.20-rc3 (including) 1.1.20-rc3 (including)
Cups Apple 1.1.20-rc4 (including) 1.1.20-rc4 (including)
Cups Apple 1.1.20-rc5 (including) 1.1.20-rc5 (including)
Cups Apple 1.1.20-rc6 (including) 1.1.20-rc6 (including)
Cups Apple 1.1.21 (including) 1.1.21 (including)
Cups Apple 1.1.21-rc1 (including) 1.1.21-rc1 (including)
Cups Apple 1.1.21-rc2 (including) 1.1.21-rc2 (including)
Cups Apple 1.1.22 (including) 1.1.22 (including)
Cups Apple 1.1.22-rc1 (including) 1.1.22-rc1 (including)
Cups Apple 1.1.22-rc2 (including) 1.1.22-rc2 (including)
Cups Apple 1.1.23 (including) 1.1.23 (including)
Cups Apple 1.1.23-rc1 (including) 1.1.23-rc1 (including)
Cups Apple 1.2-b1 (including) 1.2-b1 (including)
Cups Apple 1.2-b2 (including) 1.2-b2 (including)
Cups Apple 1.2-rc1 (including) 1.2-rc1 (including)
Cups Apple 1.2-rc2 (including) 1.2-rc2 (including)
Cups Apple 1.2-rc3 (including) 1.2-rc3 (including)
Cups Apple 1.2.0 (including) 1.2.0 (including)
Cups Apple 1.2.1 (including) 1.2.1 (including)
Cups Apple 1.2.2 (including) 1.2.2 (including)
Cups Apple 1.2.3 (including) 1.2.3 (including)
Cups Apple 1.2.4 (including) 1.2.4 (including)
Cups Apple 1.2.5 (including) 1.2.5 (including)
Cups Apple 1.2.6 (including) 1.2.6 (including)
Cups Apple 1.2.7 (including) 1.2.7 (including)
Cups Apple 1.2.8 (including) 1.2.8 (including)
Cups Apple 1.2.9 (including) 1.2.9 (including)
Cups Apple 1.2.10 (including) 1.2.10 (including)
Cups Apple 1.2.11 (including) 1.2.11 (including)
Cups Apple 1.2.12 (including) 1.2.12 (including)
Cups Apple 1.3-b1 (including) 1.3-b1 (including)
Cups Apple 1.3-rc1 (including) 1.3-rc1 (including)
Cups Apple 1.3-rc2 (including) 1.3-rc2 (including)
Cups Apple 1.3.0 (including) 1.3.0 (including)
Cups Apple 1.3.1 (including) 1.3.1 (including)
Cups Apple 1.3.2 (including) 1.3.2 (including)
Cups Apple 1.3.3 (including) 1.3.3 (including)
Cups Apple 1.3.4 (including) 1.3.4 (including)
Cups Apple 1.3.5 (including) 1.3.5 (including)
Cups Apple 1.3.6 (including) 1.3.6 (including)
Cups Apple 1.3.7 (including) 1.3.7 (including)
Cups Apple 1.3.8 (including) 1.3.8 (including)
Red Hat Enterprise Linux 3 RedHat cups-1:1.1.17-13.3.58 *
Red Hat Enterprise Linux 4 RedHat cups-1:1.1.22-0.rc1.9.27.el4_7.5 *
Red Hat Enterprise Linux 5 RedHat cups-1:1.3.7-8.el5_3.4 *
Cups Ubuntu devel *
Cups Ubuntu intrepid *
Cupsys Ubuntu dapper *
Cupsys Ubuntu gutsy *
Cupsys Ubuntu hardy *

References