Total vulnerabilities in the database
The ippReadIO function in cups/ipp.c in cupsd in CUPS before 1.3.10 does not properly initialize memory for IPP request packets, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a scheduler request with two consecutive IPP_TAG_UNSUPPORTED tags.
| Software | From | Fixed in |
|---|---|---|
| apple / cups | - | 1.3.10 |
| canonical / ubuntu_linux | 9.04 | 9.04.x |
| canonical / ubuntu_linux | 8.10 | 8.10.x |
| canonical / ubuntu_linux | 8.04 | 8.04.x |
| canonical / ubuntu_linux | 6.06 | 6.06.x |
| debian / debian_linux | 5.0 | 5.0.x |
| debian / debian_linux | 4.0 | 4.0.x |
| debian / debian_linux | 6.0 | 6.0.x |
| apple / mac_os_x_server | 10.5.0 | 10.5.8 |
| apple / mac_os_x | 10.5.0 | 10.5.8 |
| apple / mac_os_x_server | 10.0.0 | 10.4.11 |
| apple / mac_os_x | 10.0.0 | 10.4.11 |
| opensuse / opensuse | 10.3 | 10.3.x |
| suse / linux_enterprise | 10.0 | 10.0.x |
| suse / linux_enterprise | 9.0 | 9.0.x |