Secunia
Login
|
|
CVE Reference: CVE-2010-0542 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2010-0542 |
|
|
Description: The _WriteProlog function in texttops.c in texttops in the Text Filter subsystem in CUPS before 1.4.4 does not check the return values of certain calloc calls, which allows remote attackers to cause a denial of service (NULL pointer dereference or heap memory corruption) or possibly execute arbitrary code via a crafted file. |
|
|
CVE Status: Candidate |
|
|
References: SUSE http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00000.html ST 1024121 SAID Secunia Advisory: SA43521 OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10365 MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2010:234 http://www.mandriva.com/security/advisories?name=MDVSA-2010:232 GENTOO http://security.gentoo.org/glsa/glsa-201207-10.xml DEBIAN http://www.debian.org/security/2011/dsa-2176 CONFIRM http://cups.org/strfiles/3516/str3516.patch http://cups.org/str.php?L3516 http://cups.org/articles.php?L596 BID 40943 |
|
| Return to the previous page. |
