Security update for cups, cups154
SUSE Patch
security@suse.de
SUSE Security Team
SUSE-SU-2015:0465-1
Final
1
1
2015-02-24T15:42:15Z
current
2015-02-24T15:42:15Z
2015-02-24T15:42:15Z
cve-database/bin/generate-cvrf.pl
2017-02-24T01:00:00Z
Security update for cups, cups154
cups, cups154 was updated to fix one security issue.
This security issue was fixed:
- CVE-2014-9679: A malformed compressed raster file can trigger a buffer overflow in cupsRasterReadPixels (bnc#917799).
The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
SUSE-SLE-BSK-12-2015-116,SUSE-SLE-DESKTOP-12-2015-116,SUSE-SLE-Module-Legacy-12-2015-116,SUSE-SLE-SDK-12-2015-116,SUSE-SLE-SERVER-12-2015-116
Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0)
https://www.suse.com/support/update/announcement/2015/suse-su-20150465-1/
Link for SUSE-SU-2015:0465-1
https://lists.suse.com/pipermail/sle-security-updates/2015-March/001278.html
E-Mail link for SUSE-SU-2015:0465-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/917799
SUSE Bug 917799
https://www.suse.com/security/cve/CVE-2014-9679/
SUSE CVE CVE-2014-9679 page
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Module for Legacy 12
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server for SAP Applications 12
SUSE Linux Enterprise Software Development Kit 12
cups-1.7.5-5.1
cups-client-1.7.5-5.1
cups-libs-1.7.5-5.1
cups-libs-32bit-1.7.5-5.1
cups154-1.5.4-5.1
cups154-client-1.5.4-5.1
cups154-filters-1.5.4-5.1
cups154-libs-1.5.4-5.1
cups-devel-1.7.5-5.1
cups-1.7.5-5.1 as a component of SUSE Linux Enterprise Desktop 12
cups-client-1.7.5-5.1 as a component of SUSE Linux Enterprise Desktop 12
cups-libs-1.7.5-5.1 as a component of SUSE Linux Enterprise Desktop 12
cups-libs-32bit-1.7.5-5.1 as a component of SUSE Linux Enterprise Desktop 12
cups154-1.5.4-5.1 as a component of SUSE Linux Enterprise Module for Legacy 12
cups154-client-1.5.4-5.1 as a component of SUSE Linux Enterprise Module for Legacy 12
cups154-filters-1.5.4-5.1 as a component of SUSE Linux Enterprise Module for Legacy 12
cups154-libs-1.5.4-5.1 as a component of SUSE Linux Enterprise Module for Legacy 12
cups-1.7.5-5.1 as a component of SUSE Linux Enterprise Server 12
cups-client-1.7.5-5.1 as a component of SUSE Linux Enterprise Server 12
cups-libs-1.7.5-5.1 as a component of SUSE Linux Enterprise Server 12
cups-libs-32bit-1.7.5-5.1 as a component of SUSE Linux Enterprise Server 12
cups-1.7.5-5.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12
cups-client-1.7.5-5.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12
cups-libs-1.7.5-5.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12
cups-libs-32bit-1.7.5-5.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12
cups-devel-1.7.5-5.1 as a component of SUSE Linux Enterprise Software Development Kit 12
Integer underflow in the cupsRasterReadPixels function in filter/raster.c in CUPS before 2.0.2 allows remote attackers to have unspecified impact via a malformed compressed raster file, which triggers a buffer overflow.
CVE-2014-9679
SUSE Linux Enterprise Desktop 12:cups-1.7.5-5.1
SUSE Linux Enterprise Desktop 12:cups-client-1.7.5-5.1
SUSE Linux Enterprise Desktop 12:cups-libs-1.7.5-5.1
SUSE Linux Enterprise Desktop 12:cups-libs-32bit-1.7.5-5.1
SUSE Linux Enterprise Module for Legacy 12:cups154-1.5.4-5.1
SUSE Linux Enterprise Module for Legacy 12:cups154-client-1.5.4-5.1
SUSE Linux Enterprise Module for Legacy 12:cups154-filters-1.5.4-5.1
SUSE Linux Enterprise Module for Legacy 12:cups154-libs-1.5.4-5.1
SUSE Linux Enterprise Server 12:cups-1.7.5-5.1
SUSE Linux Enterprise Server 12:cups-client-1.7.5-5.1
SUSE Linux Enterprise Server 12:cups-libs-1.7.5-5.1
SUSE Linux Enterprise Server 12:cups-libs-32bit-1.7.5-5.1
SUSE Linux Enterprise Server for SAP Applications 12:cups-1.7.5-5.1
SUSE Linux Enterprise Server for SAP Applications 12:cups-client-1.7.5-5.1
SUSE Linux Enterprise Server for SAP Applications 12:cups-libs-1.7.5-5.1
SUSE Linux Enterprise Server for SAP Applications 12:cups-libs-32bit-1.7.5-5.1
SUSE Linux Enterprise Software Development Kit 12:cups-devel-1.7.5-5.1
moderate
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
https://www.suse.com/support/update/announcement/2015/suse-su-20150465-1/
https://www.suse.com/security/cve/CVE-2014-9679.html
CVE-2014-9679
https://bugzilla.suse.com/917799
SUSE Bug 917799