[v2.7] cups: cupsRasterReadPixels buffer overflow (CVE-2014-9679)
Integer underflow in the cupsRasterReadPixels function in filter/raster.c in CUPS before 2.0.2 allows remote attackers to have unspecified impact via a malformed compressed raster file, which triggers a buffer overflow.
References:
http://seclists.org/oss-sec/2015/q1/532
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9679
CONFIRM: https://www.cups.org/str.php?L4551
(from redmine: issue id 3994, created on 2015-03-16, closed on 2015-03-18)
- Relations:
- parent #3991 (closed)
- Changesets:
- Revision 5c7fbdac by Natanael Copa on 2015-03-18T09:25:57Z:
main/cups: security fix for CVE-2014-9679
fixes #3994