Red Hat Bugzilla – Bug 464710
CVE-2008-3639 CUPS: SGI image parser heap-based buffer overflow
Last modified: 2016-03-04 07:41:46 EST
A heap-based buffer overflow issue exists within the read_rle16() function
of the imagetops CUPS image filter. The row count is not properly
validated, and is used to control how many 16-bit integers are stored in a
Red Hat would like to thank "regenrecht" for reporting this issue.
Created attachment 318027 [details]
Patch from Apple
Public now via:
Fixed upstream in: 1.3.9
cups-1.3.9-1.fc8 has been pushed to the Fedora 8 stable repository. If problems still persist, please make note of it in this bug report.
cups-1.3.9-1.fc9 has been pushed to the Fedora 9 stable repository. If problems still persist, please make note of it in this bug report.
This issue was addressed in:
Red Hat Enterprise Linux: