Candidate: CVE-2010-2431
PublicDate: 2010-06-22 20:30:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2431
Description:
 The cupsFileOpen function in CUPS before 1.4.4 allows local users, with lp
 group membership, to overwrite arbitrary files via a symlink attack on the
 (1) /var/cache/cups/remote.cache or (2) /var/cache/cups/job.cache file.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_cups:
upstream_cups: released (1.4.4)
dapper_cups: DNE
hardy_cups: DNE
jaunty_cups: released (1.3.9-17ubuntu3.9)
karmic_cups: released (1.4.1-5ubuntu2.6)
lucid_cups: released (1.4.3-1ubuntu1.2)
devel_cups: not-affected (1.4.4-1)

Patches_cupsys:
upstream_cupsys: released (1.4.4)
dapper_cupsys: released (1.2.2-0ubuntu0.6.06.19)
hardy_cupsys: released (1.3.7-1ubuntu3.11)
jaunty_cupsys: DNE
karmic_cupsys: DNE
lucid_cupsys: DNE
devel_cupsys: DNE