Launchpad.net

CVE 2009-0949

The ippReadIO function in cups/ipp.c in cupsd in CUPS before 1.3.10 does not properly initialize memory for IPP request packets, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a scheduler request with two consecutive IPP_TAG_UNSUPPORTED tags.

Related bugs and status

CVE-2009-0949 (Candidate) is related to these bugs:

Bug #383334: Please update cusys to fix security vulnerability

Summary				In	Importance	Status
	383334	Please update cusys to fix security vulnerability		The Dell Mini Project	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.coresecurit...
CONFIRM: https://bugzilla.redha...
DEBIAN: DSA-1811
REDHAT: RHSA-2009:1082
REDHAT: RHSA-2009:1083
UBUNTU: USN-780-1
BID: 35169
SECTRACK: 1022321
SECUNIA: 35322
SECUNIA: 35328
SECUNIA: 35340
SECUNIA: 35342
SUSE: SUSE-SR:2009:012
SECUNIA: 35685
CONFIRM: http://support.apple.c...
APPLE: APPLE-SA-2009-09-10-2
SECUNIA: 36701
XF: apple-cups-ipptag-dos(...
OVAL: oval:org.mitre.oval:de...
BUGTRAQ: 20090602 CORE-2009-042...