Integer Overflow in CUPS Filters Affects Multiple Linux Distributions
CVE-2015-3279

Currently unrated

Key Information:

Vendor
Linux
Status
Cups-filters
Vendor
CVE Published:
14 July 2015

Summary

An integer overflow vulnerability exists in the CUPS Filters software, specifically in the filter/texttopdf component. This flaw allows remote attackers to submit specially crafted print jobs that can crash the service or potentially execute arbitrary code. The exploit occurs when the system mishandles the line size in print jobs, triggering a heap-based buffer overflow, which poses a significant risk for users of various Linux distributions relying on CUPS Filters.

References

http://ubuntu.com/usn/usn-2659-1
vendor-advisoryx_refsource_UBUNTU
https://security.gentoo.org/glsa/201510-08
vendor-advisoryx_refsource_GENTOO
http://www.openwall.com/lists/oss-security/2015/07/03/5
mailing-listx_refsource_MLIST

EPSS Score

14% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2015-3279 : Integer Overflow in CUPS Filters Affects Multiple Linux Distributions | SecurityVulnerability.io