Mandrake Linux Security Advisory : cups (MDKSA-2007:204-1)
Critical Nessus Plugin ID 27615
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionAlin Rad Pop of Secunia Research discovered a vulnerability in CUPS that can be exploited by malicious individuals to execute arbitrary code. This flaw is due to a boundary error when processing IPP (Internet Printing Protocol) tags.
Due to incorrect build requirements/conflicts, the cups-config in Mandriva Linux 2008.0 was displaying the full CFLAGS and libs instead of just the libraries when 'cups-config --libs' was invoked. This update corrects the cups-config behaviour.
SolutionUpdate the affected packages.