Scientific Linux Security Update : cups on SL3.x, SL4.x i386/x86_64
Medium Nessus Plugin ID 60863
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionMultiple flaws were discovered in the CUPS 'pdftops' filter. An attacker could create a malicious PDF file that, when printed, would cause 'pdftops' to crash or, potentially, execute arbitrary code as the 'lp' user. (CVE-2010-3702, SL4 Only - CVE-2009-3609)
After installing this update, the cupsd daemon will be restarted automatically.
SolutionUpdate the affected cups, cups-devel and / or cups-libs packages.