Issued:
2008-02-21
Updated:
2008-02-21

RHSA-2008:0157 - Security Advisory

Synopsis

Important: cups security update

Type/Severity

Security Advisory: Important

Topic

Updated cups packages that fix a security issue are now available for Red
Hat Enterprise Linux 5.

This update has been rated as having important security impact by the Red
Hat Security Response Team.

Description

The Common UNIX Printing System (CUPS) provides a portable printing layer
for UNIX(R) operating systems. The Internet Printing Protocol (IPP) is a
standard network protocol for remote printing, as well as managing print
jobs.

A flaw was found in the way CUPS handles the addition and removal of remote
shared printers via IPP. A remote attacker could send malicious UDP IPP
packets causing the CUPS daemon to crash. (CVE-2008-0882)

Note: the default configuration of CUPS on Red Hat Enterprise Linux 5 will
only accept requests of this type from the local subnet. This issue did not
affect the versions of CUPS as shipped with Red Hat Enterprise Linux 3 or
4.

All cups users are advised to upgrade to these updated packages, which
contain a backported patch to resolve this issue.

Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188

Affected Products

  • Red Hat Enterprise Linux Server 5 x86_64
  • Red Hat Enterprise Linux Server 5 ia64
  • Red Hat Enterprise Linux Server 5 i386
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 5.1 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 5.1 ia64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 5.1 i386
  • Red Hat Enterprise Linux Workstation 5 x86_64
  • Red Hat Enterprise Linux Workstation 5 i386
  • Red Hat Enterprise Linux Desktop 5 x86_64
  • Red Hat Enterprise Linux Desktop 5 i386
  • Red Hat Enterprise Linux for IBM z Systems 5 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 5.1 s390x
  • Red Hat Enterprise Linux for Power, big endian 5 ppc
  • Red Hat Enterprise Linux for Power, big endian - Extended Update Support 5.1 ppc
  • Red Hat Enterprise Linux Server from RHUI 5 x86_64
  • Red Hat Enterprise Linux Server from RHUI 5 i386

Fixes

  • BZ - 433758 - CVE-2008-0882 cups: double free vulnerability in process_browse_data()

CVEs

References

Red Hat Enterprise Linux Server 5

SRPM
cups-1.2.4-11.14.el5_1.4.src.rpm SHA-256: 985171e1339a71703523f8102f9ce26b3cc659b9528827947713d0864b6cfbb6
x86_64
cups-1.2.4-11.14.el5_1.4.x86_64.rpm SHA-256: 0881fad4cbb2c58959d5e3bb8f0e239b9ebf00fb16df1f54b38d55a04be1a350
cups-devel-1.2.4-11.14.el5_1.4.i386.rpm SHA-256: a9c5bd76eec72de4ecc6d2e09125f2f73af6be197ecd17ccd1f26aa0b5c96f77
cups-devel-1.2.4-11.14.el5_1.4.x86_64.rpm SHA-256: 2454b91079e0a8a77e31ac942cdffaa32c45b9f7eaaf577e08a0052ca69267f7
cups-libs-1.2.4-11.14.el5_1.4.i386.rpm SHA-256: 5e560f3d725b3d80b8605111dc62980477084a81e572c1b4b5034c8fbacd3c97
cups-libs-1.2.4-11.14.el5_1.4.x86_64.rpm SHA-256: 7adba071c4b52d63f17dc29c9ba398a59c37a7d8309545e01726a6e158e6e3c0
cups-lpd-1.2.4-11.14.el5_1.4.x86_64.rpm SHA-256: 871d396139fbd34c09ea7ec5b5cc0de11ccf99f602da84e3412068153fc814d9
ia64
cups-1.2.4-11.14.el5_1.4.ia64.rpm SHA-256: 98e95bf3e5b67f866c76f099060916fe5a10933842046f4abe68572f1be54b7d
cups-devel-1.2.4-11.14.el5_1.4.ia64.rpm SHA-256: afea25600939b9a41ee0b446f6eed30170cccfc4ee32588b71d7b1636f96b4a7
cups-libs-1.2.4-11.14.el5_1.4.i386.rpm SHA-256: 5e560f3d725b3d80b8605111dc62980477084a81e572c1b4b5034c8fbacd3c97
cups-libs-1.2.4-11.14.el5_1.4.ia64.rpm SHA-256: 632d516cb3135a2a0acab3d0d87270fcd6ac46b7f14f34dda2c0f3870a62c107
cups-lpd-1.2.4-11.14.el5_1.4.ia64.rpm SHA-256: f8566ce9422a58f06f7c34b7f0892a6034f1450f5b25904850a09b8e05f69b38
i386
cups-1.2.4-11.14.el5_1.4.i386.rpm SHA-256: 3dfa5aef89742b0911b3cd4bb0ea3fb33b6d6a612eee190267f2f93ece5798a3
cups-devel-1.2.4-11.14.el5_1.4.i386.rpm SHA-256: a9c5bd76eec72de4ecc6d2e09125f2f73af6be197ecd17ccd1f26aa0b5c96f77
cups-libs-1.2.4-11.14.el5_1.4.i386.rpm SHA-256: 5e560f3d725b3d80b8605111dc62980477084a81e572c1b4b5034c8fbacd3c97
cups-lpd-1.2.4-11.14.el5_1.4.i386.rpm SHA-256: a49f6c01a6aab2ca2b45a2a981cad4465b915aa72f23b5e8a36e47d99ab340fa

Red Hat Enterprise Linux for x86_64 - Extended Update Support 5.1

SRPM
x86_64
ia64
i386

Red Hat Enterprise Linux Workstation 5

SRPM
cups-1.2.4-11.14.el5_1.4.src.rpm SHA-256: 985171e1339a71703523f8102f9ce26b3cc659b9528827947713d0864b6cfbb6
x86_64
cups-1.2.4-11.14.el5_1.4.x86_64.rpm SHA-256: 0881fad4cbb2c58959d5e3bb8f0e239b9ebf00fb16df1f54b38d55a04be1a350
cups-devel-1.2.4-11.14.el5_1.4.i386.rpm SHA-256: a9c5bd76eec72de4ecc6d2e09125f2f73af6be197ecd17ccd1f26aa0b5c96f77
cups-devel-1.2.4-11.14.el5_1.4.x86_64.rpm SHA-256: 2454b91079e0a8a77e31ac942cdffaa32c45b9f7eaaf577e08a0052ca69267f7
cups-libs-1.2.4-11.14.el5_1.4.i386.rpm SHA-256: 5e560f3d725b3d80b8605111dc62980477084a81e572c1b4b5034c8fbacd3c97
cups-libs-1.2.4-11.14.el5_1.4.x86_64.rpm SHA-256: 7adba071c4b52d63f17dc29c9ba398a59c37a7d8309545e01726a6e158e6e3c0
cups-lpd-1.2.4-11.14.el5_1.4.x86_64.rpm SHA-256: 871d396139fbd34c09ea7ec5b5cc0de11ccf99f602da84e3412068153fc814d9
i386
cups-1.2.4-11.14.el5_1.4.i386.rpm SHA-256: 3dfa5aef89742b0911b3cd4bb0ea3fb33b6d6a612eee190267f2f93ece5798a3
cups-devel-1.2.4-11.14.el5_1.4.i386.rpm SHA-256: a9c5bd76eec72de4ecc6d2e09125f2f73af6be197ecd17ccd1f26aa0b5c96f77
cups-libs-1.2.4-11.14.el5_1.4.i386.rpm SHA-256: 5e560f3d725b3d80b8605111dc62980477084a81e572c1b4b5034c8fbacd3c97
cups-lpd-1.2.4-11.14.el5_1.4.i386.rpm SHA-256: a49f6c01a6aab2ca2b45a2a981cad4465b915aa72f23b5e8a36e47d99ab340fa

Red Hat Enterprise Linux Desktop 5

SRPM
cups-1.2.4-11.14.el5_1.4.src.rpm SHA-256: 985171e1339a71703523f8102f9ce26b3cc659b9528827947713d0864b6cfbb6
x86_64
cups-1.2.4-11.14.el5_1.4.x86_64.rpm SHA-256: 0881fad4cbb2c58959d5e3bb8f0e239b9ebf00fb16df1f54b38d55a04be1a350
cups-libs-1.2.4-11.14.el5_1.4.i386.rpm SHA-256: 5e560f3d725b3d80b8605111dc62980477084a81e572c1b4b5034c8fbacd3c97
cups-libs-1.2.4-11.14.el5_1.4.x86_64.rpm SHA-256: 7adba071c4b52d63f17dc29c9ba398a59c37a7d8309545e01726a6e158e6e3c0
cups-lpd-1.2.4-11.14.el5_1.4.x86_64.rpm SHA-256: 871d396139fbd34c09ea7ec5b5cc0de11ccf99f602da84e3412068153fc814d9
i386
cups-1.2.4-11.14.el5_1.4.i386.rpm SHA-256: 3dfa5aef89742b0911b3cd4bb0ea3fb33b6d6a612eee190267f2f93ece5798a3
cups-libs-1.2.4-11.14.el5_1.4.i386.rpm SHA-256: 5e560f3d725b3d80b8605111dc62980477084a81e572c1b4b5034c8fbacd3c97
cups-lpd-1.2.4-11.14.el5_1.4.i386.rpm SHA-256: a49f6c01a6aab2ca2b45a2a981cad4465b915aa72f23b5e8a36e47d99ab340fa

Red Hat Enterprise Linux for IBM z Systems 5

SRPM
cups-1.2.4-11.14.el5_1.4.src.rpm SHA-256: 985171e1339a71703523f8102f9ce26b3cc659b9528827947713d0864b6cfbb6
s390x
cups-1.2.4-11.14.el5_1.4.s390x.rpm SHA-256: f634cf8cdf3881ab726cad52274511610182d881d2e70c262025f6b2d3df5db4
cups-devel-1.2.4-11.14.el5_1.4.s390.rpm SHA-256: d5973f295fc04c376561e860d141767ad3a4c169b330b898e3d6e33d73b7efb6
cups-devel-1.2.4-11.14.el5_1.4.s390x.rpm SHA-256: 2c20dd0454813e0ce4f83678a0e9b58138aa6a7d0a9fd52a94ea51df6ea9a64a
cups-libs-1.2.4-11.14.el5_1.4.s390.rpm SHA-256: 059dfc53b19f9a48c4c555af654e466fdc30a46e887d69a7a1bbb210d13cc896
cups-libs-1.2.4-11.14.el5_1.4.s390x.rpm SHA-256: 474fa6d7057de20b6a32939ad5d41f1e0bbf219398fa482caa6437dbe089ae1d
cups-lpd-1.2.4-11.14.el5_1.4.s390x.rpm SHA-256: bd4f08ee9be532190ab18ca923894e5f2e037e9c8a87b12f118534c1aec8a9a6

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 5.1

SRPM
s390x

Red Hat Enterprise Linux for Power, big endian 5

SRPM
cups-1.2.4-11.14.el5_1.4.src.rpm SHA-256: 985171e1339a71703523f8102f9ce26b3cc659b9528827947713d0864b6cfbb6
ppc
cups-1.2.4-11.14.el5_1.4.ppc.rpm SHA-256: b71446c376413cf4857b18f091f7e6ea71f8042c42e63856f47f84ca60d734a1
cups-devel-1.2.4-11.14.el5_1.4.ppc.rpm SHA-256: ec1cd1afa1dd1874c0fc3c8a16236c5c7e1fcd144731ed0907823fc3eb84d5f0
cups-devel-1.2.4-11.14.el5_1.4.ppc64.rpm SHA-256: cdd918ebeb8266517e187338a3111334f35cd1781fd1dd32101402b06b14c709
cups-libs-1.2.4-11.14.el5_1.4.ppc.rpm SHA-256: 1dbf4a53fa0eb0e7c6c4da75a999ae6685ae1e85bd0cb511a6c39dd81058115f
cups-libs-1.2.4-11.14.el5_1.4.ppc64.rpm SHA-256: c7c0446b4125abd303c59a8de1c2bfd414d92ad26f5fbbe06810e20cbb6cf532
cups-lpd-1.2.4-11.14.el5_1.4.ppc.rpm SHA-256: 17e996acf13a48c4ad0e483485d384c667626246ed1852019f0ad94b7f5cb23a

Red Hat Enterprise Linux for Power, big endian - Extended Update Support 5.1

SRPM
ppc

Red Hat Enterprise Linux Server from RHUI 5

SRPM
cups-1.2.4-11.14.el5_1.4.src.rpm SHA-256: 985171e1339a71703523f8102f9ce26b3cc659b9528827947713d0864b6cfbb6
x86_64
cups-1.2.4-11.14.el5_1.4.x86_64.rpm SHA-256: 0881fad4cbb2c58959d5e3bb8f0e239b9ebf00fb16df1f54b38d55a04be1a350
cups-devel-1.2.4-11.14.el5_1.4.i386.rpm SHA-256: a9c5bd76eec72de4ecc6d2e09125f2f73af6be197ecd17ccd1f26aa0b5c96f77
cups-devel-1.2.4-11.14.el5_1.4.x86_64.rpm SHA-256: 2454b91079e0a8a77e31ac942cdffaa32c45b9f7eaaf577e08a0052ca69267f7
cups-libs-1.2.4-11.14.el5_1.4.i386.rpm SHA-256: 5e560f3d725b3d80b8605111dc62980477084a81e572c1b4b5034c8fbacd3c97
cups-libs-1.2.4-11.14.el5_1.4.x86_64.rpm SHA-256: 7adba071c4b52d63f17dc29c9ba398a59c37a7d8309545e01726a6e158e6e3c0
cups-lpd-1.2.4-11.14.el5_1.4.x86_64.rpm SHA-256: 871d396139fbd34c09ea7ec5b5cc0de11ccf99f602da84e3412068153fc814d9
i386
cups-1.2.4-11.14.el5_1.4.i386.rpm SHA-256: 3dfa5aef89742b0911b3cd4bb0ea3fb33b6d6a612eee190267f2f93ece5798a3
cups-devel-1.2.4-11.14.el5_1.4.i386.rpm SHA-256: a9c5bd76eec72de4ecc6d2e09125f2f73af6be197ecd17ccd1f26aa0b5c96f77
cups-libs-1.2.4-11.14.el5_1.4.i386.rpm SHA-256: 5e560f3d725b3d80b8605111dc62980477084a81e572c1b4b5034c8fbacd3c97
cups-lpd-1.2.4-11.14.el5_1.4.i386.rpm SHA-256: a49f6c01a6aab2ca2b45a2a981cad4465b915aa72f23b5e8a36e47d99ab340fa

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.