GLSA-200703-28 : CUPS: Denial of Service
Medium Nessus Plugin ID 24933
SynopsisThe remote Gentoo host is missing one or more security-related patches.
DescriptionThe remote host is affected by the vulnerability described in GLSA-200703-28 (CUPS: Denial of Service)
CUPS does not properly handle partially-negotiated SSL connections.
Upon receiving a partially-negotiated SSL connection, CUPS no longer accepts further incoming connections, as the initial connection never times out.
An attacker could partially negotiate an SSL connection with a CUPS server, and cause future connections to that server to fail, resulting in a Denial of Service.
There is no known workaround at this time.
SolutionAll CUPS users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose '>=net-print/cups-1.2.9'