Mandrake Linux Security Advisory : cups (MDKSA-2001:023)

This script is Copyright (C) 2012-2013 Tenable Network Security, Inc.


Synopsis :

The remote Mandrake Linux host is missing one or more security
updates.

Description :

A number of problems were found by the SuSE security team recently
during an internal audit of the CUPS printing package. These problems
have been resolved with the latest CUPS release which include temp
file creation vulnerabilities, potential buffer overflows, and other
security enhancements. It is highly recommended that all
Linux-Mandrake users upgrade to this new version of CUPS. Due to prior
packaging problems, users are advised to completely remove the
following CUPS packages if they are currently installed on your
system :

cups-common libcups1 libcups1-devel

You can do this by using 'rpm -e [package] --nodeps' for each package.
Once that is complete, you can upgrade CUPS using MandrakeUpdate.

Solution :

Update the affected cups and / or cups-devel packages.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)

Family: Mandriva Local Security Checks

Nessus Plugin ID: 61897 ()

Bugtraq ID:

CVE ID: CVE-2001-0194

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now