PublicDate: 2008-04-10 19:05:00 UTC
Candidate: CVE-2008-1722
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1722
 https://ubuntu.com/security/notices/USN-606-1
Description:
 Multiple integer overflows in (1) filter/image-png.c and (2)
 filter/image-zoom.c in CUPS 1.3 allow attackers to cause a denial of
 service (crash) and trigger memory corruption, as demonstrated via a
 crafted PNG image.
Ubuntu-Description:
Notes:
Bugs:
 https://bugs.launchpad.net/ubuntu/+source/cupsys/+bug/219491
Priority: medium
Discovered-by: Thomas Pollet
Assigned-to: jdstrand
CVSS: 

Patches_cupsys:
 upstream: http://www.cups.org/strfiles/2790/str2790.patch
upstream_cupsys: pending
Tags_cupsys_gutsy: apparmor
Tags_cupsys_hardy: apparmor
dapper_cupsys: released (1.2.2-0ubuntu0.6.06.9)
edgy_cupsys: needed (reached end-of-life)
feisty_cupsys: released (1.2.8-0ubuntu8.4)
gutsy_cupsys: released (1.3.2-1ubuntu7.7)
hardy_cupsys: released (1.3.7-1ubuntu3)
devel_cupsys: not-affected (1.3.7-1ubuntu3)