CUPS security vulnerability - how to determine if Unix servers are affectedQuestion: Hi,
I received following security note from our security team. Apreciate if someone
can give me the specific command to determine if I'm affected. Is it 'cups' or
'cups-lpd' that this vulnerability(see below) is referring to
In Linux "chkconfig --list | grep -i cups" listed 2 services :
cups-lpd & cups
what's the Tcp/Udp port cups & cups-lpd uses?
Is this vulnerability applicable to Solaris & HP-UX's lp or print services?
I suppose to disable them, it's just
"chkconfig cups off" &
"chkconfig cups-lpd off"
If the Linux box is rebooted, will this continue to be
disabled or it will revert back to "on" again.
Security notification I received is as follows :
Some vulnerabilities have been reported in CUPS (Common UNIX Printing System), which potentially can be exploited by malicious people to execute arbitrary code on the target system.
1) Two boundary errors exist in the implementation of the HP-GL/2 filter. These can be exploited to cause buffer overflows via HP-GL/2 files containing overly large pen numbers.
2) A boundary error exists within the "read_rle16()" function when processing SGI (Silicon Graphics Image) files. This can be exploited to cause a heap-based buffer overflow via a specially crafted SGI file.
3) An integer overflow error exists within the "WriteProlog()" function included in the "texttops" utility. This can be exploited to cause a heap-based buffer overflow via a specially crafted file.
Update to version 1.3.9.
Operating Systems running CUPS version prior to 1.3.9.