|
Mandriva- Advisories MDVSA-2008:036: Updated CUPS packages fix SNMP vulnerability
Advisories MDVSA-2008:036: Updated CUPS packages fix SNMP vulnerability
Wei Wang found that the SNMP discovery backend in CUPS did not
correctly calculate the length of strings. If a user could be tricked
into scanning for printers, a remote attacker could send a specially
crafted packet and possibly execute arbitrary code (CVE-2007-5849).
As well, the fix for CVE-2007-0720 in MDKSA-2007:086 caused another
denial of service regression within SSL handling (CVE-2007-4045).
The updated packages have been patched to correct these issues.
http://mandrivausers.org/index.php?showtopic=48824
http://mandrivausers.org/index.php?showtopic=48824
Wed, 06 Feb 2008 20:50:26 +0000
|
02-06-2008, 04:01 PM
Posted
It appears you have not yet registered with our community
which limits what you can do & see. It's Free To register, please click here.
Linear Mode
