Vulnerability CVE-2013-6476: Information
Description
The OPVPWrapper::loadDriver function in oprs/OPVPWrapper.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows local users to gain privileges via a Trojan horse driver in the same directory as the PDF file.
Severity: MEDIUM (4.4)
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
---|---|---|---|---|---|---|
cups-filters | sisyphus | 1.0.47-alt1 | 2.0.0-alt1 | ALT-PU-2014-1278-1 | 116264 | Fixed |
cups-filters | p10 | 1.0.47-alt1 | 1.28.11-alt2 | ALT-PU-2014-1278-1 | 116264 | Fixed |
cups-filters | p9 | 1.0.47-alt1 | 1.28.8-alt2 | ALT-PU-2014-1278-1 | 116264 | Fixed |
cups-filters | c10f1 | 1.0.47-alt1 | 1.28.11-alt2 | ALT-PU-2014-1278-1 | 116264 | Fixed |
cups-filters | c9f2 | 1.0.47-alt1 | 1.28.8-alt2 | ALT-PU-2014-1278-1 | 116264 | Fixed |
cups-filters | c7 | 1.0.54-alt2.M70P.2 | 1.0.54-alt3.M70C.3 | ALT-PU-2014-2034-1 | 128160 | Fixed |
cups-filters | p11 | 1.0.47-alt1 | 2.0.0-alt1 | ALT-PU-2014-1278-1 | 116264 | Fixed |
References to Advisories, Solutions, and Tools
Hyperlink | Resource |
---|---|
DSA-2875 | |
USN-2144-1 | |
http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7176 |
|
USN-2143-1 | |
https://bugzilla.redhat.com/show_bug.cgi?id=1027551 | |
DSA-2876 |