user/cups: multiple vulnerabilities
Bugzilla ID | 271 |
Alias(es) | CVE-2019-2228, CVE-2019-8842, CVE-2020-3898 |
Reporter | Max Rees (sroracle) |
Assignee | Max Rees (sroracle) |
Reported | 2020-04-23 13:15:07 -0500 |
Modified | 2020-10-30 22:40:04 -0500 |
Status | IN_PROGRESS |
Version | 1.0-RC1 |
Hardware | Adélie Linux / All |
Importance | --- / normal |
Package(s) | user/cups |
Description
A heap-based buffer overflow was discovered in in libcups's
ppdFindOption() function in ppd-mark.c:430. The issue can be
reproduced by loading a crafted ppd file and calling the
ppdMarkDefaults() libcups API function.
Downstream patch https://src.fedoraproject.org/rpms/cups/blob/c1920d09b842bd2d0611559d00d595abd8aa2424/f/cups-ppdopen-heap-overflow.patch