Problem with cups/xpdf

Josef El-Rayes josef at FreeBSD.org
Wed Nov 17 05:56:10 PST 2004 

Hilko Meyer <hilko.meyer at gmx.de>:
> Josef El-Rayes wrote
> >Josef El-Rayes <josef at freebsd.org>:
> >> Michael Nottebrock <michaelnottebrock at gmx.net>:
> >> > > I am trying to upgrade my cups-port with an up-to-date ports-tree. It fails
> >> > > because of the xpdf-vulnurability. But my xpdf-port is the most recent one
> >> > > and I think that the vulnurability was handelt in this version (if I can
> >> > > believ the cvs-comment).
> >> > >
> >> > > ===>  cups-base-1.1.22.0 has known vulnerabilities:
> >> > > >> xpdf -- integer overflow vulnerabilities.
> >> > >
> >> > >    Reference:
> >> > > <http://www.FreeBSD.org/ports/portaudit/ad2f3337-26bf-11d9-9289-000c41e2cda
> >> > >d .html>
> >> > 
> >> > The vuxml entry is wrong, vid ad2f3337-26bf-11d9-9289-000c41e2cdad has 
> >> > <range><ge>0</ge></range> but needs <range><lt>1.1.21</lt></range>.
> >
> >Okay I was a bit too fast, where did you find that the cups people fixed
> >this issue in their new release?
> 
> Look at http://www.cups.org/relnotes.php
> I think, that's this one:
> | Changes in CUPS v1.1.22rc2:
> | The pdftops filter didn't check the range of all integer attributes (STR #972)
> 
> STR #972 links to
> http://www.cups.org/str.php?L972
> | Michael Sweet
> | 14:10 Oct 20, 2004	The Xpdf-based pdftops filter has a range checking bug which could cause buffer overflows and/or denial-of-service problems.

thanks, but then the range should be < 1.1.22.

Also the entry of the trouble report for 1.1.22rc, so i guess this is
not fixed in 1.1.21. I did not have the time to check into the code
yet...

greets, josef
-- 
Josef El-Rayes                   (__)
Email:	  josef at daemon.li     \\\'',) 
Web:	  http://daemon.li/     \/  \ ^
FreeBSD   Security Team         .\._/_)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 481 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-ports/attachments/20041117/d787bc68/attachment.bin

More information about the freebsd-ports mailing list