Synopsis

Moderate: cups security update

Type/Severity

Security Advisory: Moderate

Topic

Updated cups packages that fix multiple security issues are now available
for Red Hat Enterprise Linux 5.

This update has been rated as having moderate security impact by the Red
Hat Security Response Team.

Description

The Common UNIX Printing System (CUPS) provides a portable printing layer
for UNIX(R) operating systems.

A heap buffer overflow flaw was found in a CUPS administration interface
CGI script. A local attacker able to connect to the IPP port (TCP port 631)
could send a malicious request causing the script to crash or, potentially,
execute arbitrary code as the "lp" user. Please note: the default CUPS
configuration in Red Hat Enterprise Linux 5 does not allow remote
connections to the IPP TCP port. (CVE-2008-0047)

Red Hat would like to thank "regenrecht" for reporting this issue.

This issue did not affect the versions of CUPS as shipped with Red Hat
Enterprise Linux 3 or 4.

Two overflows were discovered in the HP-GL/2-to-PostScript filter. An
attacker could create a malicious HP-GL/2 file that could possibly execute
arbitrary code as the "lp" user if the file is printed. (CVE-2008-0053)

A buffer overflow flaw was discovered in the GIF decoding routines used by
CUPS image converting filters "imagetops" and "imagetoraster". An attacker
could create a malicious GIF file that could possibly execute arbitrary
code as the "lp" user if the file was printed. (CVE-2008-1373)

All cups users are advised to upgrade to these updated packages, which
contain backported patches to resolve these issues.

Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188

Affected Products

• Red Hat Enterprise Linux Server 5 x86_64
• Red Hat Enterprise Linux Server 5 ia64
• Red Hat Enterprise Linux Server 5 i386
• Red Hat Enterprise Linux Server - Extended Update Support 5.1 x86_64
• Red Hat Enterprise Linux Server - Extended Update Support 5.1 ia64
• Red Hat Enterprise Linux Server - Extended Update Support 5.1 i386
• Red Hat Enterprise Linux Workstation 5 x86_64
• Red Hat Enterprise Linux Workstation 5 i386
• Red Hat Enterprise Linux Desktop 5 x86_64
• Red Hat Enterprise Linux Desktop 5 i386
• Red Hat Enterprise Linux for IBM z Systems 5 s390x
• Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 5.1 s390x
• Red Hat Enterprise Linux for Power, big endian 5 ppc
• Red Hat Enterprise Linux for Power, big endian - Extended Update Support 5.1 ppc
• Red Hat Enterprise Linux Server from RHUI 5 x86_64
• Red Hat Enterprise Linux Server from RHUI 5 i386

Fixes

• BZ - 436153 - CVE-2008-0047 cups: heap based buffer overflow in cgiCompileSearch()
• BZ - 438117 - CVE-2008-0053 cups: buffer overflows in HP-GL/2 filter
• BZ - 438303 - CVE-2008-1373 cups: overflow in gif image filter

CVEs

• CVE-2008-0053
• CVE-2008-1373
• CVE-2008-0047

References

• http://www.redhat.com/security/updates/classification/#moderate

Red Hat Enterprise Linux Server 5

SRPM
cups-1.2.4-11.14.el5_1.6.src.rpm	SHA-256: d56fc36626b7142a17789cdd7fcd5c87279f7a3e7810c9f80d476f4e334b5cc7
x86_64
cups-1.2.4-11.14.el5_1.6.x86_64.rpm	SHA-256: 8d1dbb944cce6d40fb04c30a3c56489e8e7caacc88398fd7b9bb02fe8bda3f22
cups-devel-1.2.4-11.14.el5_1.6.i386.rpm	SHA-256: eec81a26b7095fec41dd4c3953a813bef94ae4bfbc28a5e9e1b9950123719fb2
cups-devel-1.2.4-11.14.el5_1.6.x86_64.rpm	SHA-256: a658ff526aba0acfc8222bbb839bcca25e5a3698112d9012b0056d3efc2c2b3a
cups-libs-1.2.4-11.14.el5_1.6.i386.rpm	SHA-256: f732acd39e51e931638bed9844857ef565494e40432c6d430c3f521f94491a84
cups-libs-1.2.4-11.14.el5_1.6.x86_64.rpm	SHA-256: 6e63f330b8a09f04bc62ff4026490ff1fb4b154da5b426ee16eedcb2a5040ba3
cups-lpd-1.2.4-11.14.el5_1.6.x86_64.rpm	SHA-256: a296235f5e58c4a7547ae430b5066ef0ff2c0e549063d67df7b3330877305371
ia64
cups-1.2.4-11.14.el5_1.6.ia64.rpm	SHA-256: f5995672ca64cc5caaf2f3096a758d13b96739b4268bbf6b7d51c81b11ce2284
cups-devel-1.2.4-11.14.el5_1.6.ia64.rpm	SHA-256: 2d9b113cd248ba47409eb808cd783517a7b096ea813a4d5aa4d6850e66a9af4e
cups-libs-1.2.4-11.14.el5_1.6.i386.rpm	SHA-256: f732acd39e51e931638bed9844857ef565494e40432c6d430c3f521f94491a84
cups-libs-1.2.4-11.14.el5_1.6.ia64.rpm	SHA-256: d00fa086746c60ee629d2ddeff3221965ba7796a2681783bc6cbcc944600f9cb
cups-lpd-1.2.4-11.14.el5_1.6.ia64.rpm	SHA-256: 9a352e95cfa367f9ddc1ef84785b20bf20dbeeb058d5062ce59aab1e9e629e63
i386
cups-1.2.4-11.14.el5_1.6.i386.rpm	SHA-256: 98ab4eaf481987a5842beff23c5bf5ba1212b8662da33c758d9a3e43566cd383
cups-devel-1.2.4-11.14.el5_1.6.i386.rpm	SHA-256: eec81a26b7095fec41dd4c3953a813bef94ae4bfbc28a5e9e1b9950123719fb2
cups-libs-1.2.4-11.14.el5_1.6.i386.rpm	SHA-256: f732acd39e51e931638bed9844857ef565494e40432c6d430c3f521f94491a84
cups-lpd-1.2.4-11.14.el5_1.6.i386.rpm	SHA-256: df38a61d4a510fdfd78012c974084ed14d6fa440863c4f7eb76ad1a80eb7cfe4

Red Hat Enterprise Linux Workstation 5

SRPM
cups-1.2.4-11.14.el5_1.6.src.rpm	SHA-256: d56fc36626b7142a17789cdd7fcd5c87279f7a3e7810c9f80d476f4e334b5cc7
x86_64
cups-1.2.4-11.14.el5_1.6.x86_64.rpm	SHA-256: 8d1dbb944cce6d40fb04c30a3c56489e8e7caacc88398fd7b9bb02fe8bda3f22
cups-devel-1.2.4-11.14.el5_1.6.i386.rpm	SHA-256: eec81a26b7095fec41dd4c3953a813bef94ae4bfbc28a5e9e1b9950123719fb2
cups-devel-1.2.4-11.14.el5_1.6.x86_64.rpm	SHA-256: a658ff526aba0acfc8222bbb839bcca25e5a3698112d9012b0056d3efc2c2b3a
cups-libs-1.2.4-11.14.el5_1.6.i386.rpm	SHA-256: f732acd39e51e931638bed9844857ef565494e40432c6d430c3f521f94491a84
cups-libs-1.2.4-11.14.el5_1.6.x86_64.rpm	SHA-256: 6e63f330b8a09f04bc62ff4026490ff1fb4b154da5b426ee16eedcb2a5040ba3
cups-lpd-1.2.4-11.14.el5_1.6.x86_64.rpm	SHA-256: a296235f5e58c4a7547ae430b5066ef0ff2c0e549063d67df7b3330877305371
i386
cups-1.2.4-11.14.el5_1.6.i386.rpm	SHA-256: 98ab4eaf481987a5842beff23c5bf5ba1212b8662da33c758d9a3e43566cd383
cups-devel-1.2.4-11.14.el5_1.6.i386.rpm	SHA-256: eec81a26b7095fec41dd4c3953a813bef94ae4bfbc28a5e9e1b9950123719fb2
cups-libs-1.2.4-11.14.el5_1.6.i386.rpm	SHA-256: f732acd39e51e931638bed9844857ef565494e40432c6d430c3f521f94491a84
cups-lpd-1.2.4-11.14.el5_1.6.i386.rpm	SHA-256: df38a61d4a510fdfd78012c974084ed14d6fa440863c4f7eb76ad1a80eb7cfe4

Red Hat Enterprise Linux Desktop 5

SRPM
cups-1.2.4-11.14.el5_1.6.src.rpm	SHA-256: d56fc36626b7142a17789cdd7fcd5c87279f7a3e7810c9f80d476f4e334b5cc7
x86_64
cups-1.2.4-11.14.el5_1.6.x86_64.rpm	SHA-256: 8d1dbb944cce6d40fb04c30a3c56489e8e7caacc88398fd7b9bb02fe8bda3f22
cups-libs-1.2.4-11.14.el5_1.6.i386.rpm	SHA-256: f732acd39e51e931638bed9844857ef565494e40432c6d430c3f521f94491a84
cups-libs-1.2.4-11.14.el5_1.6.x86_64.rpm	SHA-256: 6e63f330b8a09f04bc62ff4026490ff1fb4b154da5b426ee16eedcb2a5040ba3
cups-lpd-1.2.4-11.14.el5_1.6.x86_64.rpm	SHA-256: a296235f5e58c4a7547ae430b5066ef0ff2c0e549063d67df7b3330877305371
i386
cups-1.2.4-11.14.el5_1.6.i386.rpm	SHA-256: 98ab4eaf481987a5842beff23c5bf5ba1212b8662da33c758d9a3e43566cd383
cups-libs-1.2.4-11.14.el5_1.6.i386.rpm	SHA-256: f732acd39e51e931638bed9844857ef565494e40432c6d430c3f521f94491a84
cups-lpd-1.2.4-11.14.el5_1.6.i386.rpm	SHA-256: df38a61d4a510fdfd78012c974084ed14d6fa440863c4f7eb76ad1a80eb7cfe4

Red Hat Enterprise Linux for IBM z Systems 5

SRPM
cups-1.2.4-11.14.el5_1.6.src.rpm	SHA-256: d56fc36626b7142a17789cdd7fcd5c87279f7a3e7810c9f80d476f4e334b5cc7
s390x
cups-1.2.4-11.14.el5_1.6.s390x.rpm	SHA-256: c2ec23809295edf8ccfcbe2904c469dcf906ea069607e5aa841c2aa4e88c4ddc
cups-devel-1.2.4-11.14.el5_1.6.s390.rpm	SHA-256: 421a208e912e9d4a948811dc180512848b889e0ee33e418f393c2a5cd2961002
cups-devel-1.2.4-11.14.el5_1.6.s390x.rpm	SHA-256: 53831a7c189f7f6d3cffdc5f596190ee7832dbbe5b31675caf341bb30fa328d4
cups-libs-1.2.4-11.14.el5_1.6.s390.rpm	SHA-256: de0aa448ea0aa52abf3ea727fe00792541cf0a21a92aa483e872bfa066c677f0
cups-libs-1.2.4-11.14.el5_1.6.s390x.rpm	SHA-256: dad2c82a61d22b07e1d4efebe6914b8867c4d52f2319a5054b1197911e083160
cups-lpd-1.2.4-11.14.el5_1.6.s390x.rpm	SHA-256: b242b9ecbb50fab6a8c788026c096dc00960d5097997cfd41898cdd29cd5e615

Red Hat Enterprise Linux for Power, big endian 5

SRPM
cups-1.2.4-11.14.el5_1.6.src.rpm	SHA-256: d56fc36626b7142a17789cdd7fcd5c87279f7a3e7810c9f80d476f4e334b5cc7
ppc
cups-1.2.4-11.14.el5_1.6.ppc.rpm	SHA-256: c1f56d69c9d72d8c7ed41bd506e6a1a400a49d2ef18f87d5c2f1d0874f047f6c
cups-devel-1.2.4-11.14.el5_1.6.ppc.rpm	SHA-256: 78067a3b4647276b30db98ff3eb150fb89b1a8a9f04f45186441677f783e1e50
cups-devel-1.2.4-11.14.el5_1.6.ppc64.rpm	SHA-256: 386ff2f9ee9bc07d242970ac7c023c006d442ecc9d6ab7823ddab8214cb42d63
cups-libs-1.2.4-11.14.el5_1.6.ppc.rpm	SHA-256: 3826c0c2888bf7e0cdc645f5570b759103d68a44b7a0923edef47e741c31c1fd
cups-libs-1.2.4-11.14.el5_1.6.ppc64.rpm	SHA-256: ef4bf5ff2cc0930318790e19d55601ba37ff75ab58a80d1d540e9e8eb33530b0
cups-lpd-1.2.4-11.14.el5_1.6.ppc.rpm	SHA-256: dd688c11eab8f8859a06deb4bb60dd56f8aaf9c899eb4bcc945dd17f3680b1b9

Red Hat Enterprise Linux Server from RHUI 5

SRPM
cups-1.2.4-11.14.el5_1.6.src.rpm	SHA-256: d56fc36626b7142a17789cdd7fcd5c87279f7a3e7810c9f80d476f4e334b5cc7
x86_64
cups-1.2.4-11.14.el5_1.6.x86_64.rpm	SHA-256: 8d1dbb944cce6d40fb04c30a3c56489e8e7caacc88398fd7b9bb02fe8bda3f22
cups-devel-1.2.4-11.14.el5_1.6.i386.rpm	SHA-256: eec81a26b7095fec41dd4c3953a813bef94ae4bfbc28a5e9e1b9950123719fb2
cups-devel-1.2.4-11.14.el5_1.6.x86_64.rpm	SHA-256: a658ff526aba0acfc8222bbb839bcca25e5a3698112d9012b0056d3efc2c2b3a
cups-libs-1.2.4-11.14.el5_1.6.i386.rpm	SHA-256: f732acd39e51e931638bed9844857ef565494e40432c6d430c3f521f94491a84
cups-libs-1.2.4-11.14.el5_1.6.x86_64.rpm	SHA-256: 6e63f330b8a09f04bc62ff4026490ff1fb4b154da5b426ee16eedcb2a5040ba3
cups-lpd-1.2.4-11.14.el5_1.6.x86_64.rpm	SHA-256: a296235f5e58c4a7547ae430b5066ef0ff2c0e549063d67df7b3330877305371
i386
cups-1.2.4-11.14.el5_1.6.i386.rpm	SHA-256: 98ab4eaf481987a5842beff23c5bf5ba1212b8662da33c758d9a3e43566cd383
cups-devel-1.2.4-11.14.el5_1.6.i386.rpm	SHA-256: eec81a26b7095fec41dd4c3953a813bef94ae4bfbc28a5e9e1b9950123719fb2
cups-libs-1.2.4-11.14.el5_1.6.i386.rpm	SHA-256: f732acd39e51e931638bed9844857ef565494e40432c6d430c3f521f94491a84
cups-lpd-1.2.4-11.14.el5_1.6.i386.rpm	SHA-256: df38a61d4a510fdfd78012c974084ed14d6fa440863c4f7eb76ad1a80eb7cfe4