CVE-2015-3279

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2015-3279
Integer overflow in filter/texttopdf.c in texttopdf in cups-filters before 1.0.71 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted line size in a print job, which triggers a heap-based buffer overflow.

7.5 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7365
http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7366#NEWS
http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7369
http://lists.opensuse.org/opensuse-updates/2015-07/msg00033.html
http://rhn.redhat.com/errata/RHSA-2015-2360.html
http://ubuntu.com/usn/usn-2659-1
http://www.debian.org/security/2015/dsa-3303
http://www.openwall.com/lists/oss-security/2015/07/03/2
http://www.openwall.com/lists/oss-security/2015/07/03/5
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
http://www.securityfocus.com/bid/75557
https://bugzilla.redhat.com/show_bug.cgi?id=1238990
https://security.gentoo.org/glsa/201510-08
http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7365
http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7366#NEWS
http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7369
http://lists.opensuse.org/opensuse-updates/2015-07/msg00033.html
http://rhn.redhat.com/errata/RHSA-2015-2360.html
http://ubuntu.com/usn/usn-2659-1
http://www.debian.org/security/2015/dsa-3303
http://www.openwall.com/lists/oss-security/2015/07/03/2
http://www.openwall.com/lists/oss-security/2015/07/03/5
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
http://www.securityfocus.com/bid/75557
https://bugzilla.redhat.com/show_bug.cgi?id=1238990
https://security.gentoo.org/glsa/201510-08
Configurations

Configuration 1 (hide)

cpe:2.3:a:linuxfoundation:cups-filters:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:15.04:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:7.1:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
History

21 Nov 2024, 02:29

Type Values Removed Values Added
References () http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7365 - () http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7365 -
References () http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7366#NEWS - () http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7366#NEWS -
References () http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7369 - () http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7369 -
References () http://lists.opensuse.org/opensuse-updates/2015-07/msg00033.html - () http://lists.opensuse.org/opensuse-updates/2015-07/msg00033.html -
References () http://rhn.redhat.com/errata/RHSA-2015-2360.html - () http://rhn.redhat.com/errata/RHSA-2015-2360.html -
References () http://ubuntu.com/usn/usn-2659-1 - () http://ubuntu.com/usn/usn-2659-1 -
References () http://www.debian.org/security/2015/dsa-3303 - () http://www.debian.org/security/2015/dsa-3303 -
References () http://www.openwall.com/lists/oss-security/2015/07/03/2 - () http://www.openwall.com/lists/oss-security/2015/07/03/2 -
References () http://www.openwall.com/lists/oss-security/2015/07/03/5 - () http://www.openwall.com/lists/oss-security/2015/07/03/5 -
References () http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html - () http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html -
References () http://www.securityfocus.com/bid/75557 - () http://www.securityfocus.com/bid/75557 -
References () https://bugzilla.redhat.com/show_bug.cgi?id=1238990 - () https://bugzilla.redhat.com/show_bug.cgi?id=1238990 -
References () https://security.gentoo.org/glsa/201510-08 - () https://security.gentoo.org/glsa/201510-08 -
Information

Published : 2015-07-14 16:59

Updated : 2024-11-21 02:29

NVD link : CVE-2015-3279

Mitre link : CVE-2015-3279

CVE.ORG link : CVE-2015-3279

JSON object : View

Products Affected

canonical

  • ubuntu_linux

linuxfoundation

  • cups-filters

debian

  • debian_linux
CWE
CWE-189

Numeric Errors


NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024