Upstream information
Description
Use-after-free vulnerability in the abstract file-descriptor handling interface in the cupsdDoSelect function in scheduler/select.c in the scheduler in cupsd in CUPS 1.3.7 and 1.3.10 allows remote attackers to cause a denial of service (daemon crash or hang) via a client disconnection during listing of a large number of print jobs, related to improperly maintaining a reference count. NOTE: some of these details are obtained from third party information.NVD CVSS v2 Base Score: 5.0 (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Novell/SUSE information
Novell Bugzilla entries: 554861, 574336, 578215 SUSE Security Advisories:- SUSE-SR:2009:020, published Tue, 12 Jan 2010 10:00:00 +0000
- SUSE-SR:2010:007, published Tue, 30 Mar 2010 10:00:00 +0000
List of released packages
| Product(s) | Fixed package version(s) | References |
|---|---|---|
| openSUSE 11.0 |
| |
| openSUSE 11.0 |
| |
| openSUSE 11.1 |
| |
| openSUSE 11.1 |
| |
| Novell Linux Desktop 9 for x86_64 |
| core9.s390 sles9-nlpos.x86 core9.x86-64 core9.x86 core9.ia64 sles9-oes.x86 core9.ppc sles9-nld.x86-64 core9.s390x sles9-nld.x86 YOU Patch Nr: 12561 |
| Novell Linux Desktop 9 for x86 Open Enterprise Server |
| core9.s390 sles9-nlpos.x86 core9.x86-64 core9.x86 core9.ia64 sles9-oes.x86 core9.ppc sles9-nld.x86-64 core9.s390x sles9-nld.x86 YOU Patch Nr: 12561 |
| SUSE Linux Enterprise 11 Moblin 2.1 DEBUGINFO |
| SAT Patch Nr: 2149 |
| SUSE Linux Enterprise 11 Moblin 2.1 |
| SAT Patch Nr: 2149 |
| SUSE Linux Enterprise 11 GA DEBUGINFO |
| sle11-debuginfo.ppc sled11.x86 sles11.x86-64 sle11-sdk.x86 sle11-sdk.ppc sles11.ppc sle11-sdk.s390x sles11.x86 sle11-debuginfo.s390x sle11-debuginfo.ia64 sles11.ia64 sle11-sdk.x86-64 sle11-debuginfo.x86-64 sles11.s390x sle11-debuginfo.x86 sle11-sdk.ia64 sled11.x86-64 SAT Patch Nr: 2108 |
| SUSE Linux Enterprise SDK 11 GA |
| sle11-debuginfo.ppc sled11.x86 sles11.x86-64 sle11-sdk.x86 sle11-sdk.ppc sles11.ppc sle11-sdk.s390x sles11.x86 sle11-debuginfo.s390x sle11-debuginfo.ia64 sles11.ia64 sle11-sdk.x86-64 sle11-debuginfo.x86-64 sles11.s390x sle11-debuginfo.x86 sle11-sdk.ia64 sled11.x86-64 SAT Patch Nr: 2108 |
| SUSE Linux Enterprise Desktop 11 GA SUSE Linux Enterprise Server 11 GA |
| sle11-debuginfo.ppc sled11.x86 sles11.x86-64 sle11-sdk.x86 sle11-sdk.ppc sles11.ppc sle11-sdk.s390x sles11.x86 sle11-debuginfo.s390x sle11-debuginfo.ia64 sles11.ia64 sle11-sdk.x86-64 sle11-debuginfo.x86-64 sles11.s390x sle11-debuginfo.x86 sle11-sdk.ia64 sled11.x86-64 SAT Patch Nr: 2108 |
| SUSE Linux Enterprise Server 11 GA |
| sle11-debuginfo.ppc sled11.x86 sles11.x86-64 sle11-sdk.x86 sle11-sdk.ppc sles11.ppc sle11-sdk.s390x sles11.x86 sle11-debuginfo.s390x sle11-debuginfo.ia64 sles11.ia64 sle11-sdk.x86-64 sle11-debuginfo.x86-64 sles11.s390x sle11-debuginfo.x86 sle11-sdk.ia64 sled11.x86-64 SAT Patch Nr: 2108 |
| SUSE Linux Enterprise Desktop 11 GA SUSE Linux Enterprise Server 11 GA |
| sle11-debuginfo.ppc sled11.x86 sles11.x86-64 sle11-sdk.x86 sle11-sdk.ppc sles11.ppc sle11-sdk.s390x sles11.x86 sle11-debuginfo.s390x sle11-debuginfo.ia64 sles11.ia64 sle11-sdk.x86-64 sle11-debuginfo.x86-64 sles11.s390x sle11-debuginfo.x86 sle11-sdk.ia64 sled11.x86-64 SAT Patch Nr: 2108 |
| SUSE Linux Enterprise 11 Moblin 2.1 DEBUGINFO |
| SAT Patch Nr: 2324 |
| SUSE Linux Enterprise 11 Moblin 2.1 |
| SAT Patch Nr: 2324 |
| SUSE Linux Enterprise 11 Moblin 2.0 |
| SAT Patch Nr: 2323 |
| SUSE Linux Enterprise 11 Moblin 2.0 |
| SAT Patch Nr: 2323 |
| SUSE Linux Enterprise 11 Moblin 2.0 |
| SAT Patch Nr: 2105 |
| SUSE Linux Enterprise 11 Moblin 2.0 |
| SAT Patch Nr: 2105 |
| openSUSE 11.2 |
| |
| openSUSE 11.2 |
| |
| openSUSE 11.0 |
| |
| openSUSE 11.0 |
| |
| openSUSE 11.1 |
| |
| openSUSE 11.1 |
| |
| openSUSE 11.2 |
| |
| openSUSE 11.2 |
|