Vulnerability CVE-2013-6473: Information

Description

Multiple heap-based buffer overflows in the urftopdf filter in cups-filters 1.0.25 before 1.0.47 allow remote attackers to execute arbitrary code via a large (1) page or (2) line in a URF file.

Severity: MEDIUM (6.8)

URL: https://nvd.nist.gov/vuln/detail/CVE-2013-6473
Published: March 14, 2014
Modified: Dec. 31, 2016
Error type identifier: CWE-119

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
cups-filterssisyphus1.0.47-alt12.0.0-alt1ALT-PU-2014-1278-1116264Fixed
cups-filtersp101.0.47-alt11.28.11-alt2ALT-PU-2014-1278-1116264Fixed
cups-filtersp91.0.47-alt11.28.8-alt2ALT-PU-2014-1278-1116264Fixed
cups-filtersc10f11.0.47-alt11.28.11-alt2ALT-PU-2014-1278-1116264Fixed
cups-filtersc9f21.0.47-alt11.28.8-alt2ALT-PU-2014-1278-1116264Fixed
cups-filtersc71.0.54-alt2.M70P.21.0.54-alt3.M70C.3ALT-PU-2014-2034-1128160Fixed
cups-filtersp111.0.47-alt12.0.0-alt1ALT-PU-2014-1278-1116264Fixed

References to Advisories, Solutions, and Tools

Hyperlink
Resource
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=741333
    https://bugzilla.redhat.com/show_bug.cgi?id=1027547
      http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7175
      • Patch
      USN-2143-1
        66601

            1. Configuration 1

              cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*

              Configuration 2

              cpe:2.3:a:linuxfoundation:cups-filters:1.0.46:*:*:*:*:*:*:*
              cpe:2.3:a:linuxfoundation:cups-filters:1.0.35:*:*:*:*:*:*:*
              cpe:2.3:a:linuxfoundation:cups-filters:1.0.30:*:*:*:*:*:*:*
              cpe:2.3:a:linuxfoundation:cups-filters:1.0.32:*:*:*:*:*:*:*
              cpe:2.3:a:linuxfoundation:cups-filters:1.0.37:*:*:*:*:*:*:*
              cpe:2.3:a:linuxfoundation:cups-filters:1.0.25:*:*:*:*:*:*:*
              cpe:2.3:a:linuxfoundation:cups-filters:1.0.26:*:*:*:*:*:*:*
              cpe:2.3:a:linuxfoundation:cups-filters:1.0.44:*:*:*:*:*:*:*
              cpe:2.3:a:linuxfoundation:cups-filters:1.0.43:*:*:*:*:*:*:*
              cpe:2.3:a:linuxfoundation:cups-filters:1.0.45:*:*:*:*:*:*:*
              cpe:2.3:a:linuxfoundation:cups-filters:1.0.34:*:*:*:*:*:*:*
              cpe:2.3:a:linuxfoundation:cups-filters:1.0.31:*:*:*:*:*:*:*
              cpe:2.3:a:linuxfoundation:cups-filters:1.0.33:*:*:*:*:*:*:*
              cpe:2.3:a:linuxfoundation:cups-filters:1.0.27:*:*:*:*:*:*:*
              cpe:2.3:a:linuxfoundation:cups-filters:1.0.28:*:*:*:*:*:*:*
              cpe:2.3:a:linuxfoundation:cups-filters:1.0.41:*:*:*:*:*:*:*
              cpe:2.3:a:linuxfoundation:cups-filters:1.0.38:*:*:*:*:*:*:*
              cpe:2.3:a:linuxfoundation:cups-filters:1.0.36:*:*:*:*:*:*:*
              cpe:2.3:a:linuxfoundation:cups-filters:1.0.40:*:*:*:*:*:*:*
              cpe:2.3:a:linuxfoundation:cups-filters:1.0.29:*:*:*:*:*:*:*
              cpe:2.3:a:linuxfoundation:cups-filters:1.0.42:*:*:*:*:*:*:*
              cpe:2.3:a:linuxfoundation:cups-filters:1.0.39:*:*:*:*:*:*:*
          VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
          Version: v24.5.3
          Back to top