SuSE 11 Security Update : CUPS (SAT Patch Number 2108)
Medium Nessus Plugin ID 45105
The remote SuSE 11 host is missing one or more security updates.
lppasswd when running setuid or setgid still honors environment variables that specify the location of message files. Local attackers could exploit that to gather information by using crafted format strings. (CVE-2010-0393) The previous fix for a use-after-free vulnerability (CVE-2009-3553) was incomplete. (CVE-2010-0302)