[3.0] cups-filters: texttopdf integer overflow (CVE-2015-3279)
Integer overflow in filter/texttopdf.c in texttopdf in cups-filters
before
1.0.71 allows remote attackers to cause a denial of service (crash)
or
possibly execute arbitrary code via a crafted line size in a print
job,
which triggers a heap-based buffer overflow.
References:
https://bugzilla.redhat.com/show\_bug.cgi?id=1238990
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3279
Patch:
http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7365
(from redmine: issue id 4820, created on 2015-11-03, closed on 2015-12-09)
- Relations:
- parent #4817 (closed)
- Changesets:
- Revision 488722e3 on 2015-12-03T13:23:33Z:
main/cups-filters: security fix CVE-2015-3279. Fixes #4820