Bug 1027547 (CVE-2013-6473)

Summary: CVE-2013-6473 cups-filters: two heap-based buffer overflow flaws in urftopdf
Product: [Other] Security Response Reporter: Murray McAllister <mmcallis>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED NOTABUG QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: unspecifiedCC: fweimer, security-response-team, twaugh, vdanen
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard: impact=moderate,public=20140311,reported=20130830,source=redhat,cvss2=5.1/AV:N/AC:H/Au:N/C:P/I:P/A:P,fedora-all/cups-filters=affected,cwe=CWE-122[auto]
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2014-03-11 01:32:15 EDT Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---
Bug Depends On: 1074840    
Bug Blocks: 1002935, 1010117    

Description Murray McAllister 2013-11-06 23:14:07 EST
Two heap-based buffer overflow flaws were found in the urftopdf filter. If a malicious URF file were processed, it could lead to arbitrary code execution with the privileges of the "lp" user.


These issues were discovered by Florian Weimer of the Red Hat Product Security Team.
Comment 5 Huzaifa S. Sidhpurwala 2014-03-11 01:11:49 EDT
Public via:


This issue has been resolved in upstream cups-filters-1.0.47
Comment 6 Huzaifa S. Sidhpurwala 2014-03-11 01:17:57 EDT
Created cups-filters tracking bugs for this issue:

Affects: fedora-all [bug 1074840]