The ippReadIO function in cups/ipp.c in cupsd in CUPS prior to 1.3.10 does not properly initialize memory for IPP request packets, which allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via a scheduler request with two consecutive IPP_TAG_UNSUPPORTED tags.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple cups |
||
canonical ubuntu linux 9.04 |
||
canonical ubuntu linux 8.10 |
||
canonical ubuntu linux 8.04 |
||
canonical ubuntu linux 6.06 |
||
debian debian linux 5.0 |
||
debian debian linux 4.0 |
||
debian debian linux 6.0 |
||
apple mac os x server |
||
apple mac os x |
||
opensuse opensuse 10.3 |
||
suse linux enterprise 10.0 |
||
suse linux enterprise 9.0 |