Total vulnerabilities in the database
ipp.c in cupsd in CUPS 1.4.4 and earlier does not properly allocate memory for attribute values with invalid string data types, which allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly execute arbitrary code via a crafted IPP request.
| Software | From | Fixed in |
|---|---|---|
| apple / cups | - | 1.4.4.x |
| apple / mac_os_x_server | 10.6.0 | 10.6.4.x |
| apple / mac_os_x | 10.6.0 | 10.6.4.x |
| apple / mac_os_x_server | - | 10.5.8 |
| apple / mac_os_x | - | 10.5.8 |
| fedoraproject / fedora | 13 | 13.x |
| fedoraproject / fedora | 12 | 12.x |
| fedoraproject / fedora | 14 | 14.x |
| canonical / ubuntu_linux | 10.10 | 10.10.x |
| canonical / ubuntu_linux | 9.10 | 9.10.x |
| canonical / ubuntu_linux | 10.04 | 10.04.x |
| canonical / ubuntu_linux | 8.04 | 8.04.x |
| canonical / ubuntu_linux | 6.06 | 6.06.x |
| debian / debian_linux | 5.0 | 5.0.x |
| opensuse / opensuse | 11.1 | 11.1.x |
| suse / linux_enterprise_server | 9 | 9.x |
| opensuse / opensuse | 11.2 | 11.2.x |
| opensuse / opensuse | 11.3 | 11.3.x |
| suse / linux_enterprise | 11.0-sp1 | 11.0-sp1.x |
| suse / linux_enterprise | 11.0 | 11.0.x |
| suse / linux_enterprise | 10.0-sp3 | 10.0-sp3.x |
| redhat / enterprise_linux_server | 5.0 | 5.0.x |
| redhat / enterprise_linux | 6.0 | 6.0.x |
| redhat / enterprise_linux_workstation | 5.0 | 5.0.x |
| redhat / enterprise_linux | 5.0 | 5.0.x |
| redhat / enterprise_linux_desktop | 5.0 | 5.0.x |