Red Hat Product Errata RHSA-2005:878 - Security Advisory
Issued:
2005-12-20
Updated:
2005-12-20

RHSA-2005:878 - Security Advisory

Synopsis

cups security update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

Updated CUPS packages that fix multiple security issues are now available
for Red Hat Enterprise Linux.

This update has been rated as having important security impact by the Red
Hat Security Response Team.

Description

The Common UNIX Printing System (CUPS) provides a portable printing layer
for UNIX(R) operating systems.

Several flaws were discovered in the way CUPS processes PDF files. An
attacker could construct a carefully crafted PDF file that could cause CUPS
to crash or possibly execute arbitrary code when opened. The Common
Vulnerabilities and Exposures project assigned the names CVE-2005-3191,
CVE-2005-3192, and CVE-2005-3193 to these issues.

All users of CUPS should upgrade to these updated packages, which contain
backported patches to resolve these issues.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via Red Hat Network. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.

Affected Products

  • Red Hat Enterprise Linux Server 4 x86_64
  • Red Hat Enterprise Linux Server 4 ia64
  • Red Hat Enterprise Linux Server 4 i386
  • Red Hat Enterprise Linux Server 3 x86_64
  • Red Hat Enterprise Linux Server 3 ia64
  • Red Hat Enterprise Linux Server 3 i386
  • Red Hat Enterprise Linux Workstation 4 x86_64
  • Red Hat Enterprise Linux Workstation 4 ia64
  • Red Hat Enterprise Linux Workstation 4 i386
  • Red Hat Enterprise Linux Workstation 3 x86_64
  • Red Hat Enterprise Linux Workstation 3 ia64
  • Red Hat Enterprise Linux Workstation 3 i386
  • Red Hat Enterprise Linux Desktop 4 x86_64
  • Red Hat Enterprise Linux Desktop 4 i386
  • Red Hat Enterprise Linux Desktop 3 x86_64
  • Red Hat Enterprise Linux Desktop 3 i386
  • Red Hat Enterprise Linux for IBM z Systems 4 s390x
  • Red Hat Enterprise Linux for IBM z Systems 4 s390
  • Red Hat Enterprise Linux for IBM z Systems 3 s390x
  • Red Hat Enterprise Linux for IBM z Systems 3 s390
  • Red Hat Enterprise Linux for Power, big endian 4 ppc
  • Red Hat Enterprise Linux for Power, big endian 3 ppc

Fixes

  • BZ - 175645 - CVE-2005-3193 xpdf issues (CVE-2005-3191 CVE-2005-3192)

References

(none)

Red Hat Enterprise Linux Server 4

SRPM
cups-1.1.22-0.rc1.9.9.src.rpm SHA-256: d48fdfe45402d75b0ec569050e7c550cd8adeab5a7340d5e03618882fd96707f
x86_64
cups-1.1.22-0.rc1.9.9.x86_64.rpm SHA-256: 8626039f22ba74c73d503fb04f6473dd67dd52fb263f9343ee4863b660db7e02
cups-1.1.22-0.rc1.9.9.x86_64.rpm SHA-256: 8626039f22ba74c73d503fb04f6473dd67dd52fb263f9343ee4863b660db7e02
cups-devel-1.1.22-0.rc1.9.9.x86_64.rpm SHA-256: 6fecf093359344d88c726fc42f50174a987c5d74f958fbcedc89b56f17612001
cups-devel-1.1.22-0.rc1.9.9.x86_64.rpm SHA-256: 6fecf093359344d88c726fc42f50174a987c5d74f958fbcedc89b56f17612001
cups-libs-1.1.22-0.rc1.9.9.i386.rpm SHA-256: cb39a88f50fbf90378e6be16c2cfe57c34001f97a8d859e1da6c759185cede53
cups-libs-1.1.22-0.rc1.9.9.i386.rpm SHA-256: cb39a88f50fbf90378e6be16c2cfe57c34001f97a8d859e1da6c759185cede53
cups-libs-1.1.22-0.rc1.9.9.x86_64.rpm SHA-256: c6ce6c395e6a523bf90f32899ce5092c587c0554b53b5703c9894d0b8ac631ff
cups-libs-1.1.22-0.rc1.9.9.x86_64.rpm SHA-256: c6ce6c395e6a523bf90f32899ce5092c587c0554b53b5703c9894d0b8ac631ff
ia64
cups-1.1.22-0.rc1.9.9.ia64.rpm SHA-256: 3fd6eb4231217166e79677621b7d427a69add7166c6a4daa4409508b8384e039
cups-1.1.22-0.rc1.9.9.ia64.rpm SHA-256: 3fd6eb4231217166e79677621b7d427a69add7166c6a4daa4409508b8384e039
cups-devel-1.1.22-0.rc1.9.9.ia64.rpm SHA-256: e1bf2ab921a107bb6c9b86cad29f05b4261d7e5478593960ceb3b2469a72f8d1
cups-devel-1.1.22-0.rc1.9.9.ia64.rpm SHA-256: e1bf2ab921a107bb6c9b86cad29f05b4261d7e5478593960ceb3b2469a72f8d1
cups-libs-1.1.22-0.rc1.9.9.i386.rpm SHA-256: cb39a88f50fbf90378e6be16c2cfe57c34001f97a8d859e1da6c759185cede53
cups-libs-1.1.22-0.rc1.9.9.i386.rpm SHA-256: cb39a88f50fbf90378e6be16c2cfe57c34001f97a8d859e1da6c759185cede53
cups-libs-1.1.22-0.rc1.9.9.ia64.rpm SHA-256: b0f8de30992b255093f79a96b8e8d5fc72ed3df94f86ec31a32c0acb0470bb84
cups-libs-1.1.22-0.rc1.9.9.ia64.rpm SHA-256: b0f8de30992b255093f79a96b8e8d5fc72ed3df94f86ec31a32c0acb0470bb84
i386
cups-1.1.22-0.rc1.9.9.i386.rpm SHA-256: 6950fcd2370b07bab860830e66799bd8df450e67742585b8d573c23eeb5a744f
cups-1.1.22-0.rc1.9.9.i386.rpm SHA-256: 6950fcd2370b07bab860830e66799bd8df450e67742585b8d573c23eeb5a744f
cups-devel-1.1.22-0.rc1.9.9.i386.rpm SHA-256: 42780d630952b41edefd8b3bc4405e03a65be137b3e1e2f6c923a436c41cc770
cups-devel-1.1.22-0.rc1.9.9.i386.rpm SHA-256: 42780d630952b41edefd8b3bc4405e03a65be137b3e1e2f6c923a436c41cc770
cups-libs-1.1.22-0.rc1.9.9.i386.rpm SHA-256: cb39a88f50fbf90378e6be16c2cfe57c34001f97a8d859e1da6c759185cede53
cups-libs-1.1.22-0.rc1.9.9.i386.rpm SHA-256: cb39a88f50fbf90378e6be16c2cfe57c34001f97a8d859e1da6c759185cede53

Red Hat Enterprise Linux Server 3

SRPM
x86_64
ia64
i386

Red Hat Enterprise Linux Workstation 4

SRPM
cups-1.1.22-0.rc1.9.9.src.rpm SHA-256: d48fdfe45402d75b0ec569050e7c550cd8adeab5a7340d5e03618882fd96707f
x86_64
cups-1.1.22-0.rc1.9.9.x86_64.rpm SHA-256: 8626039f22ba74c73d503fb04f6473dd67dd52fb263f9343ee4863b660db7e02
cups-devel-1.1.22-0.rc1.9.9.x86_64.rpm SHA-256: 6fecf093359344d88c726fc42f50174a987c5d74f958fbcedc89b56f17612001
cups-libs-1.1.22-0.rc1.9.9.i386.rpm SHA-256: cb39a88f50fbf90378e6be16c2cfe57c34001f97a8d859e1da6c759185cede53
cups-libs-1.1.22-0.rc1.9.9.x86_64.rpm SHA-256: c6ce6c395e6a523bf90f32899ce5092c587c0554b53b5703c9894d0b8ac631ff
ia64
cups-1.1.22-0.rc1.9.9.ia64.rpm SHA-256: 3fd6eb4231217166e79677621b7d427a69add7166c6a4daa4409508b8384e039
cups-devel-1.1.22-0.rc1.9.9.ia64.rpm SHA-256: e1bf2ab921a107bb6c9b86cad29f05b4261d7e5478593960ceb3b2469a72f8d1
cups-libs-1.1.22-0.rc1.9.9.i386.rpm SHA-256: cb39a88f50fbf90378e6be16c2cfe57c34001f97a8d859e1da6c759185cede53
cups-libs-1.1.22-0.rc1.9.9.ia64.rpm SHA-256: b0f8de30992b255093f79a96b8e8d5fc72ed3df94f86ec31a32c0acb0470bb84
i386
cups-1.1.22-0.rc1.9.9.i386.rpm SHA-256: 6950fcd2370b07bab860830e66799bd8df450e67742585b8d573c23eeb5a744f
cups-devel-1.1.22-0.rc1.9.9.i386.rpm SHA-256: 42780d630952b41edefd8b3bc4405e03a65be137b3e1e2f6c923a436c41cc770
cups-libs-1.1.22-0.rc1.9.9.i386.rpm SHA-256: cb39a88f50fbf90378e6be16c2cfe57c34001f97a8d859e1da6c759185cede53

Red Hat Enterprise Linux Workstation 3

SRPM
x86_64
ia64
i386

Red Hat Enterprise Linux Desktop 4

SRPM
cups-1.1.22-0.rc1.9.9.src.rpm SHA-256: d48fdfe45402d75b0ec569050e7c550cd8adeab5a7340d5e03618882fd96707f
x86_64
cups-1.1.22-0.rc1.9.9.x86_64.rpm SHA-256: 8626039f22ba74c73d503fb04f6473dd67dd52fb263f9343ee4863b660db7e02
cups-devel-1.1.22-0.rc1.9.9.x86_64.rpm SHA-256: 6fecf093359344d88c726fc42f50174a987c5d74f958fbcedc89b56f17612001
cups-libs-1.1.22-0.rc1.9.9.i386.rpm SHA-256: cb39a88f50fbf90378e6be16c2cfe57c34001f97a8d859e1da6c759185cede53
cups-libs-1.1.22-0.rc1.9.9.x86_64.rpm SHA-256: c6ce6c395e6a523bf90f32899ce5092c587c0554b53b5703c9894d0b8ac631ff
i386
cups-1.1.22-0.rc1.9.9.i386.rpm SHA-256: 6950fcd2370b07bab860830e66799bd8df450e67742585b8d573c23eeb5a744f
cups-devel-1.1.22-0.rc1.9.9.i386.rpm SHA-256: 42780d630952b41edefd8b3bc4405e03a65be137b3e1e2f6c923a436c41cc770
cups-libs-1.1.22-0.rc1.9.9.i386.rpm SHA-256: cb39a88f50fbf90378e6be16c2cfe57c34001f97a8d859e1da6c759185cede53

Red Hat Enterprise Linux Desktop 3

SRPM
x86_64
i386

Red Hat Enterprise Linux for IBM z Systems 4

SRPM
cups-1.1.22-0.rc1.9.9.src.rpm SHA-256: d48fdfe45402d75b0ec569050e7c550cd8adeab5a7340d5e03618882fd96707f
s390x
cups-1.1.22-0.rc1.9.9.s390x.rpm SHA-256: 1b10b1872e86728877da187ca61e2ae87a51f80a3157e0a5588a6bfca7f95b6a
cups-devel-1.1.22-0.rc1.9.9.s390x.rpm SHA-256: 59afefe61e71e0d942983be9824b2e964ac6fcbc4d70fa8195d660c44e5fa664
cups-libs-1.1.22-0.rc1.9.9.s390.rpm SHA-256: 81afa661794ef120ae623fcd7d75c5e45893e7b05358b56573b8d1c9b6e987e3
cups-libs-1.1.22-0.rc1.9.9.s390x.rpm SHA-256: 2123177cd286c610f465ed45d07a35818a71c64017be4f53780362bdc8698b1f
s390
cups-1.1.22-0.rc1.9.9.s390.rpm SHA-256: 35c088ffb0e4f6424644e5af9ca98e2b84a28caa85156c94f282d437e2cbbe9d
cups-devel-1.1.22-0.rc1.9.9.s390.rpm SHA-256: 6c01780e859196fb71c6593868a90412a5bb16e28794ae0fef0a4a360ad6a501
cups-libs-1.1.22-0.rc1.9.9.s390.rpm SHA-256: 81afa661794ef120ae623fcd7d75c5e45893e7b05358b56573b8d1c9b6e987e3

Red Hat Enterprise Linux for IBM z Systems 3

SRPM
s390x
s390

Red Hat Enterprise Linux for Power, big endian 4

SRPM
cups-1.1.22-0.rc1.9.9.src.rpm SHA-256: d48fdfe45402d75b0ec569050e7c550cd8adeab5a7340d5e03618882fd96707f
ppc
cups-1.1.22-0.rc1.9.9.ppc.rpm SHA-256: 47ae5c48b398886ed28d915233c652c10a5d6bf482a7db62a945c3c61f9abde9
cups-devel-1.1.22-0.rc1.9.9.ppc.rpm SHA-256: afc360d437a869d145569076523dc2953e9708ad69e3c0499dcab17190744a08
cups-libs-1.1.22-0.rc1.9.9.ppc.rpm SHA-256: c9c2a69bb29bfb51a2a5fee0114b70198772fac76f9130150449016473cad16f
cups-libs-1.1.22-0.rc1.9.9.ppc64.rpm SHA-256: 8c86f6023b09d9db09a1677a4dbb787487f4c9b4d44ef1ea392edf36657acc09

Red Hat Enterprise Linux for Power, big endian 3

SRPM
ppc

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.