[SECURITY] [DLA 159-1] cups security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 159-1] cups security update
From: Ben Hutchings <benh@debian.org>
Date: Fri, 27 Feb 2015 13:03:07 +0000
Message-id: <[🔎] 1425042187.28544.37.camel@debian.org>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

Package        : cups
Version        : 1.4.4-7+squeeze7
CVE ID         : CVE-2014-9679
Debian Bug     : #778387

Peter De Wachter discovered that CUPS, the Common UNIX Printing
System, did not correctly parse compressed raster files. By submitting
a specially crafted raster file, a remote attacker could use this
vulnerability to trigger a buffer overflow.

For the oldstable distribution (squeeze), this problem has been fixed in
version 1.4.4-7+squeeze7.

For the stable distribution (wheezy), this problem has been fixed in
version 1.5.3-5+deb7u5.

We recommend that you upgrade your cups packages.

-- 
Ben Hutchings - Debian developer, kernel team member

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to:

Prev by Date: [SECURITY] [DLA 158-1] request-tracker3.8 security update
Next by Date: [SECURITY] [DLA 160-1] sudo security update
Previous by thread: [SECURITY] [DLA 158-1] request-tracker3.8 security update
Next by thread: [SECURITY] [DLA 160-1] sudo security update
Index(es):
- Date
- Thread