TEMP-0000000-ACBC4C

NameTEMP-0000000-ACBC4C
Descriptionbuffer overflows in init_cups
SourceAutomatically generated temporary name. Not for external reference.

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
cups-filters (PTS)jessie, jessie (lts)1.0.61-5+deb8u5vulnerable
stretch (security)1.11.6-3+deb9u1fixed
stretch (lts), stretch1.11.6-3+deb9u3fixed
buster, buster (lts)1.21.6-5+deb10u2fixed
buster (security)1.21.6-5+deb10u1fixed
bullseye1.28.7-1+deb11u2fixed
bullseye (security)1.28.7-1+deb11u3fixed
bookworm (security), bookworm1.28.17-3+deb12u1fixed
sid, trixie1.28.17-5fixed
foomatic-filters (PTS)jessie, jessie (lts)4.0.17-5+deb8u1vulnerable
stretch4.0.17-9vulnerable
buster4.0.17-11vulnerable
bullseye4.0.17-12vulnerable
sid, trixie, bookworm4.0.17-16vulnerable

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
cups-filterssource(unstable)1.6.0-1unimportant
foomatic-filterssourcesqueeze4.0.5-6+squeeze2+deb6u13
foomatic-filterssource(unstable)(unfixed)unimportant

Notes

[jessie] - foomatic-filters <no-dsa> (Minor issue)
[wheezy] - foomatic-filters <no-dsa> (Minor issue)
workaround entry for DLA-399-1 until/if CVE assigned
https://bugs.linuxfoundation.org/show_bug.cgi?id=1336
http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7431
Doesn't cross any security boundary
Search for package or bug name: Reporting problems