Red Hat Product Errata RHSA-2005:878 - Security Advisory

Issued:: 2005-12-20
Updated:: 2005-12-20

RHSA-2005:878 - Security Advisory

Overview
Updated Packages

Synopsis

cups security update

Type/Severity

Security Advisory: Important

Topic

Updated CUPS packages that fix multiple security issues are now available
for Red Hat Enterprise Linux.

This update has been rated as having important security impact by the Red
Hat Security Response Team.

Description

The Common UNIX Printing System (CUPS) provides a portable printing layer
for UNIX(R) operating systems.

Several flaws were discovered in the way CUPS processes PDF files. An
attacker could construct a carefully crafted PDF file that could cause CUPS
to crash or possibly execute arbitrary code when opened. The Common
Vulnerabilities and Exposures project assigned the names CVE-2005-3191,
CVE-2005-3192, and CVE-2005-3193 to these issues.

All users of CUPS should upgrade to these updated packages, which contain
backported patches to resolve these issues.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via Red Hat Network. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.

Affected Products

Red Hat Enterprise Linux Server 4 x86_64
Red Hat Enterprise Linux Server 4 ia64
Red Hat Enterprise Linux Server 4 i386
Red Hat Enterprise Linux Server 3 x86_64
Red Hat Enterprise Linux Server 3 ia64
Red Hat Enterprise Linux Server 3 i386
Red Hat Enterprise Linux Workstation 4 x86_64
Red Hat Enterprise Linux Workstation 4 ia64
Red Hat Enterprise Linux Workstation 4 i386
Red Hat Enterprise Linux Workstation 3 x86_64
Red Hat Enterprise Linux Workstation 3 ia64
Red Hat Enterprise Linux Workstation 3 i386
Red Hat Enterprise Linux Desktop 4 x86_64
Red Hat Enterprise Linux Desktop 4 i386
Red Hat Enterprise Linux Desktop 3 x86_64
Red Hat Enterprise Linux Desktop 3 i386
Red Hat Enterprise Linux for IBM z Systems 4 s390x
Red Hat Enterprise Linux for IBM z Systems 4 s390
Red Hat Enterprise Linux for IBM z Systems 3 s390x
Red Hat Enterprise Linux for IBM z Systems 3 s390
Red Hat Enterprise Linux for Power, big endian 4 ppc
Red Hat Enterprise Linux for Power, big endian 3 ppc

Fixes

BZ - 175645 - CVE-2005-3193 xpdf issues (CVE-2005-3191 CVE-2005-3192)

CVEs

References

(none)

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server 4

SRPM
cups-1.1.22-0.rc1.9.9.src.rpm	SHA-256: d48fdfe45402d75b0ec569050e7c550cd8adeab5a7340d5e03618882fd96707f
x86_64
cups-1.1.22-0.rc1.9.9.x86_64.rpm	SHA-256: 8626039f22ba74c73d503fb04f6473dd67dd52fb263f9343ee4863b660db7e02
cups-1.1.22-0.rc1.9.9.x86_64.rpm	SHA-256: 8626039f22ba74c73d503fb04f6473dd67dd52fb263f9343ee4863b660db7e02
cups-devel-1.1.22-0.rc1.9.9.x86_64.rpm	SHA-256: 6fecf093359344d88c726fc42f50174a987c5d74f958fbcedc89b56f17612001
cups-devel-1.1.22-0.rc1.9.9.x86_64.rpm	SHA-256: 6fecf093359344d88c726fc42f50174a987c5d74f958fbcedc89b56f17612001
cups-libs-1.1.22-0.rc1.9.9.i386.rpm	SHA-256: cb39a88f50fbf90378e6be16c2cfe57c34001f97a8d859e1da6c759185cede53
cups-libs-1.1.22-0.rc1.9.9.i386.rpm	SHA-256: cb39a88f50fbf90378e6be16c2cfe57c34001f97a8d859e1da6c759185cede53
cups-libs-1.1.22-0.rc1.9.9.x86_64.rpm	SHA-256: c6ce6c395e6a523bf90f32899ce5092c587c0554b53b5703c9894d0b8ac631ff
cups-libs-1.1.22-0.rc1.9.9.x86_64.rpm	SHA-256: c6ce6c395e6a523bf90f32899ce5092c587c0554b53b5703c9894d0b8ac631ff
ia64
cups-1.1.22-0.rc1.9.9.ia64.rpm	SHA-256: 3fd6eb4231217166e79677621b7d427a69add7166c6a4daa4409508b8384e039
cups-1.1.22-0.rc1.9.9.ia64.rpm	SHA-256: 3fd6eb4231217166e79677621b7d427a69add7166c6a4daa4409508b8384e039
cups-devel-1.1.22-0.rc1.9.9.ia64.rpm	SHA-256: e1bf2ab921a107bb6c9b86cad29f05b4261d7e5478593960ceb3b2469a72f8d1
cups-devel-1.1.22-0.rc1.9.9.ia64.rpm	SHA-256: e1bf2ab921a107bb6c9b86cad29f05b4261d7e5478593960ceb3b2469a72f8d1
cups-libs-1.1.22-0.rc1.9.9.i386.rpm	SHA-256: cb39a88f50fbf90378e6be16c2cfe57c34001f97a8d859e1da6c759185cede53
cups-libs-1.1.22-0.rc1.9.9.i386.rpm	SHA-256: cb39a88f50fbf90378e6be16c2cfe57c34001f97a8d859e1da6c759185cede53
cups-libs-1.1.22-0.rc1.9.9.ia64.rpm	SHA-256: b0f8de30992b255093f79a96b8e8d5fc72ed3df94f86ec31a32c0acb0470bb84
cups-libs-1.1.22-0.rc1.9.9.ia64.rpm	SHA-256: b0f8de30992b255093f79a96b8e8d5fc72ed3df94f86ec31a32c0acb0470bb84
i386
cups-1.1.22-0.rc1.9.9.i386.rpm	SHA-256: 6950fcd2370b07bab860830e66799bd8df450e67742585b8d573c23eeb5a744f
cups-1.1.22-0.rc1.9.9.i386.rpm	SHA-256: 6950fcd2370b07bab860830e66799bd8df450e67742585b8d573c23eeb5a744f
cups-devel-1.1.22-0.rc1.9.9.i386.rpm	SHA-256: 42780d630952b41edefd8b3bc4405e03a65be137b3e1e2f6c923a436c41cc770
cups-devel-1.1.22-0.rc1.9.9.i386.rpm	SHA-256: 42780d630952b41edefd8b3bc4405e03a65be137b3e1e2f6c923a436c41cc770
cups-libs-1.1.22-0.rc1.9.9.i386.rpm	SHA-256: cb39a88f50fbf90378e6be16c2cfe57c34001f97a8d859e1da6c759185cede53
cups-libs-1.1.22-0.rc1.9.9.i386.rpm	SHA-256: cb39a88f50fbf90378e6be16c2cfe57c34001f97a8d859e1da6c759185cede53

Red Hat Enterprise Linux Workstation 4

SRPM
cups-1.1.22-0.rc1.9.9.src.rpm	SHA-256: d48fdfe45402d75b0ec569050e7c550cd8adeab5a7340d5e03618882fd96707f
x86_64
cups-1.1.22-0.rc1.9.9.x86_64.rpm	SHA-256: 8626039f22ba74c73d503fb04f6473dd67dd52fb263f9343ee4863b660db7e02
cups-devel-1.1.22-0.rc1.9.9.x86_64.rpm	SHA-256: 6fecf093359344d88c726fc42f50174a987c5d74f958fbcedc89b56f17612001
cups-libs-1.1.22-0.rc1.9.9.i386.rpm	SHA-256: cb39a88f50fbf90378e6be16c2cfe57c34001f97a8d859e1da6c759185cede53
cups-libs-1.1.22-0.rc1.9.9.x86_64.rpm	SHA-256: c6ce6c395e6a523bf90f32899ce5092c587c0554b53b5703c9894d0b8ac631ff
ia64
cups-1.1.22-0.rc1.9.9.ia64.rpm	SHA-256: 3fd6eb4231217166e79677621b7d427a69add7166c6a4daa4409508b8384e039
cups-devel-1.1.22-0.rc1.9.9.ia64.rpm	SHA-256: e1bf2ab921a107bb6c9b86cad29f05b4261d7e5478593960ceb3b2469a72f8d1
cups-libs-1.1.22-0.rc1.9.9.i386.rpm	SHA-256: cb39a88f50fbf90378e6be16c2cfe57c34001f97a8d859e1da6c759185cede53
cups-libs-1.1.22-0.rc1.9.9.ia64.rpm	SHA-256: b0f8de30992b255093f79a96b8e8d5fc72ed3df94f86ec31a32c0acb0470bb84
i386
cups-1.1.22-0.rc1.9.9.i386.rpm	SHA-256: 6950fcd2370b07bab860830e66799bd8df450e67742585b8d573c23eeb5a744f
cups-devel-1.1.22-0.rc1.9.9.i386.rpm	SHA-256: 42780d630952b41edefd8b3bc4405e03a65be137b3e1e2f6c923a436c41cc770
cups-libs-1.1.22-0.rc1.9.9.i386.rpm	SHA-256: cb39a88f50fbf90378e6be16c2cfe57c34001f97a8d859e1da6c759185cede53

Red Hat Enterprise Linux Desktop 4

SRPM
cups-1.1.22-0.rc1.9.9.src.rpm	SHA-256: d48fdfe45402d75b0ec569050e7c550cd8adeab5a7340d5e03618882fd96707f
x86_64
cups-1.1.22-0.rc1.9.9.x86_64.rpm	SHA-256: 8626039f22ba74c73d503fb04f6473dd67dd52fb263f9343ee4863b660db7e02
cups-devel-1.1.22-0.rc1.9.9.x86_64.rpm	SHA-256: 6fecf093359344d88c726fc42f50174a987c5d74f958fbcedc89b56f17612001
cups-libs-1.1.22-0.rc1.9.9.i386.rpm	SHA-256: cb39a88f50fbf90378e6be16c2cfe57c34001f97a8d859e1da6c759185cede53
cups-libs-1.1.22-0.rc1.9.9.x86_64.rpm	SHA-256: c6ce6c395e6a523bf90f32899ce5092c587c0554b53b5703c9894d0b8ac631ff
i386
cups-1.1.22-0.rc1.9.9.i386.rpm	SHA-256: 6950fcd2370b07bab860830e66799bd8df450e67742585b8d573c23eeb5a744f
cups-devel-1.1.22-0.rc1.9.9.i386.rpm	SHA-256: 42780d630952b41edefd8b3bc4405e03a65be137b3e1e2f6c923a436c41cc770
cups-libs-1.1.22-0.rc1.9.9.i386.rpm	SHA-256: cb39a88f50fbf90378e6be16c2cfe57c34001f97a8d859e1da6c759185cede53

Red Hat Enterprise Linux for IBM z Systems 4

SRPM
cups-1.1.22-0.rc1.9.9.src.rpm	SHA-256: d48fdfe45402d75b0ec569050e7c550cd8adeab5a7340d5e03618882fd96707f
s390x
cups-1.1.22-0.rc1.9.9.s390x.rpm	SHA-256: 1b10b1872e86728877da187ca61e2ae87a51f80a3157e0a5588a6bfca7f95b6a
cups-devel-1.1.22-0.rc1.9.9.s390x.rpm	SHA-256: 59afefe61e71e0d942983be9824b2e964ac6fcbc4d70fa8195d660c44e5fa664
cups-libs-1.1.22-0.rc1.9.9.s390.rpm	SHA-256: 81afa661794ef120ae623fcd7d75c5e45893e7b05358b56573b8d1c9b6e987e3
cups-libs-1.1.22-0.rc1.9.9.s390x.rpm	SHA-256: 2123177cd286c610f465ed45d07a35818a71c64017be4f53780362bdc8698b1f
s390
cups-1.1.22-0.rc1.9.9.s390.rpm	SHA-256: 35c088ffb0e4f6424644e5af9ca98e2b84a28caa85156c94f282d437e2cbbe9d
cups-devel-1.1.22-0.rc1.9.9.s390.rpm	SHA-256: 6c01780e859196fb71c6593868a90412a5bb16e28794ae0fef0a4a360ad6a501
cups-libs-1.1.22-0.rc1.9.9.s390.rpm	SHA-256: 81afa661794ef120ae623fcd7d75c5e45893e7b05358b56573b8d1c9b6e987e3

Red Hat Enterprise Linux for Power, big endian 4

SRPM
cups-1.1.22-0.rc1.9.9.src.rpm	SHA-256: d48fdfe45402d75b0ec569050e7c550cd8adeab5a7340d5e03618882fd96707f
ppc
cups-1.1.22-0.rc1.9.9.ppc.rpm	SHA-256: 47ae5c48b398886ed28d915233c652c10a5d6bf482a7db62a945c3c61f9abde9
cups-devel-1.1.22-0.rc1.9.9.ppc.rpm	SHA-256: afc360d437a869d145569076523dc2953e9708ad69e3c0499dcab17190744a08
cups-libs-1.1.22-0.rc1.9.9.ppc.rpm	SHA-256: c9c2a69bb29bfb51a2a5fee0114b70198772fac76f9130150449016473cad16f
cups-libs-1.1.22-0.rc1.9.9.ppc64.rpm	SHA-256: 8c86f6023b09d9db09a1677a4dbb787487f4c9b4d44ef1ea392edf36657acc09

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

JBoss Development and Management

JBoss Integration and Automation

Mobile

Services

Tools

Red Hat Product Security Center

Security Updates

Resources

Customer Portal Community

Customer Events

Stories