Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

FLEA-2007-0003-1: cups
From: Foresight Linux Essential Announcement Service <foresight-security-noreply () foresightlinux org>
Date: Sun, 25 Mar 2007 15:12:28 -0400

Foresight Linux Essential Advisory: 2007-0003-1
Published: 2007-03-25

Rating: Minor

Updated Versions:
 
cups=/conary.rpath.com () rpl:devel//foresight.rpath.org () fl:1-devel//1/1.2.10-0.1-1
     group-dist=/foresight.rpath.org () fl:1-devel//1/1.1-0.10-2

References:
     https://issues.foresightlinux.org/browse/FL-205
     http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0720

Description:
     Previous versions of the cups package could be forced to hang via a 
client "partially negotiating" an ssl connection. In this state, cups 
would not allow other connections to be made, a denial of service.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault