Red Hat Bugzilla – Bug 497135
CVE-2009-1196 cups: DoS (stop, crash) by renewing CUPS browse packets
Last modified: 2010-10-26 06:59:25 EDT
Swen van Brussel reported pointer use-after-delete flaw, present in the CUPS directory services routine, processing new data about available printers and printer classes. A remote attacker could suspend, and after a carefully-chosen time interval renew sending of CUPS browse packets to the victim machine
with running cupsd daemon, leading to a denial of service (cupsd daemon
stop or crash).
Red Hat would like to thank Swen van Brussel for reporting this issue.
This issue has been addressed in following products:
Red Hat Enterprise Linux 3
Red Hat Enterprise Linux 4
Via RHSA-2009:1083 https://rhn.redhat.com/errata/RHSA-2009-1083.html