CVE-2015-3279

Currently unrated

Key Information:

Vendor: Linux
Status: Cups-filters
Vendor: CVE Published:; 14 July 2015

Summary

Integer overflow in filter/texttopdf.c in texttopdf in cups-filters before 1.0.71 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted line size in a print job, which triggers a heap-based buffer overflow.

References

http://ubuntu.com/usn/usn-2659-1

vendor-advisoryx_refsource_UBUNTU

https://security.gentoo.org/glsa/201510-08

vendor-advisoryx_refsource_GENTOO

http://www.openwall.com/lists/oss-security/2015/07/03/5

mailing-listx_refsource_MLIST

EPSS Score

5% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jul 14, 2015
Vulnerability Reserved
Apr 10, 2015