Common Vulnerabilities and Exposures assigned an identifier CVE-2008-0053 to the following vulnerability: Unspecified vulnerability in CUPS before 1.3.6 in Apple Mac OS X 10.5.2 has unknown impact and attack vectors related to "input validation." References: http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html
Listed in APPLE-SA-2008-03-18 along with CVE-2008-0882: CUPS CVE-ID: CVE-2008-0053, CVE-2008-0882 Available for: Mac OS X v10.5.2, Mac OS X Server v10.5.2 Impact: Multiple vulnerabilities in CUPS may lead to an unexpected application termination or arbitrary code execution with system privileges Description: Multiple input validation issues exist in CUPS, the most serious of which may lead to arbitrary code execution with system privileges. This update addresses the issues by updating to CUPS 1.3.6. These issues do not affect systems prior to Mac OS X v10.5.
Created attachment 298651 [details] Upstream patch According to upstream, this CVE id was allocated for following issue fixed in CUPS 1.3.6 (see CHANGES.txt): - Fixed two overflow bugs in the HP-GL/2 filter (Coverity)
cups-1.2.12-10.fc7 has been submitted as an update for Fedora 7
cups-1.2.12-10.fc7 has been pushed to the Fedora 7 stable repository. If problems still persist, please make note of it in this bug report.
This issue was addressed in: Red Hat Enterprise Linux: http://rhn.redhat.com/errata/RHSA-2008-0192.html http://rhn.redhat.com/errata/RHSA-2008-0206.html Fedora: https://admin.fedoraproject.org/updates/F7/FEDORA-2008-2897