rpm package
suse/cups&distro=SUSE Linux Enterprise Server 12 SP1-LTSS
pkg:rpm/suse/cups&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSS
Vulnerabilities (4)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-8696 | — | < 1.7.5-20.26.1 | 1.7.5-20.26.1 | Oct 27, 2020 | A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra. An attacker in a privileged network position may be able to execute arbitrary code. | ||
| CVE-2019-8675 | — | < 1.7.5-20.26.1 | 1.7.5-20.26.1 | Oct 27, 2020 | A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra. An attacker in a privileged network position may be able to execute arbitrary code. | ||
| CVE-2020-3898 | — | < 1.7.5-20.29.1 | 1.7.5-20.29.1 | Oct 22, 2020 | A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.4. An application may be able to gain elevated privileges. | ||
| CVE-2017-18190 | — | < 1.7.5-20.3.1 | 1.7.5-20.3.1 | Feb 16, 2018 | A localhost.localdomain whitelist entry in valid_host() in scheduler/client.c in CUPS before 2.2.2 allows remote attackers to execute arbitrary IPP commands by sending POST requests to the CUPS daemon in conjunction with DNS rebinding. The localhost.localdomain name is often reso |
- CVE-2019-8696Oct 27, 2020affected < 1.7.5-20.26.1fixed 1.7.5-20.26.1
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra. An attacker in a privileged network position may be able to execute arbitrary code.
- CVE-2019-8675Oct 27, 2020affected < 1.7.5-20.26.1fixed 1.7.5-20.26.1
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra. An attacker in a privileged network position may be able to execute arbitrary code.
- CVE-2020-3898Oct 22, 2020affected < 1.7.5-20.29.1fixed 1.7.5-20.29.1
A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.4. An application may be able to gain elevated privileges.
- CVE-2017-18190Feb 16, 2018affected < 1.7.5-20.3.1fixed 1.7.5-20.3.1
A localhost.localdomain whitelist entry in valid_host() in scheduler/client.c in CUPS before 2.2.2 allows remote attackers to execute arbitrary IPP commands by sending POST requests to the CUPS daemon in conjunction with DNS rebinding. The localhost.localdomain name is often reso