PublicDate: 2008-02-21 19:44:00 UTC
Candidate: CVE-2008-0882
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0882
 http://www.cups.org/str.php?L2656
 https://ubuntu.com/security/notices/USN-598-1
Description:
 Double free vulnerability in the process_browse_data function in CUPS 1.3.5
 allows remote attackers to cause a denial of service (daemon crash) and
 possibly execute arbitrary code via crafted UDP Browse packets to the cupsd
 port (631/udp), related to an unspecified manipulation of a remote printer.
  NOTE: some of these details are obtained from third party information.
Ubuntu-Description: 
Notes: 
Bugs: 
 http://bugs.debian.org/467653
Priority: medium
Discovered-by:
Assigned-to: jdstrand
CVSS: 

Patches_cupsys:
 vendor: https://rhn.redhat.com/errata/RHSA-2008-0157.html
Tags_cupsys_gutsy: apparmor
upstream_cupsys: needs-triage
dapper_cupsys: released (1.2.2-0ubuntu0.6.06.8)
edgy_cupsys: released (1.2.4-2ubuntu3.3)
feisty_cupsys: released (1.2.8-0ubuntu8.3)
gutsy_cupsys: released (1.3.2-1ubuntu7.6)
devel_cupsys: released (1.3.6-1ubuntu1)