CVE-2010-2941

CRITICAL

CUPS <1.4.4 - Use After Free

Title source: llm

Description

ipp.c in cupsd in CUPS 1.4.4 and earlier does not properly allocate memory for attribute values with invalid string data types, which allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly execute arbitrary code via a crafted IPP request.

References (29)

[Broken Link] http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_mozilla_firefox

[Mailing List] http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html

[Mailing List] http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050977.html

[Mailing List] http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051277.html

[Mailing List] http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051301.html

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00000.html

[Third Party Advisory] http://rhn.redhat.com/errata/RHSA-2010-0811.html

[Broken Link] http://secunia.com/advisories/42287

[Broken Link] http://secunia.com/advisories/42867

[Broken Link] http://secunia.com/advisories/43521

[Third Party Advisory] http://security.gentoo.org/glsa/glsa-201207-10.xml

[Broken Link, Third Party Advisory, VDB Entry] http://securitytracker.com/id?1024662

[Broken Link] http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.468323

[Broken Link] http://support.apple.com/kb/HT4435

[Mailing List, Third Party Advisory] http://www.debian.org/security/2011/dsa-2176

[Broken Link] http://www.mandriva.com/security/advisories?name=MDVSA-2010:232

[Broken Link] http://www.mandriva.com/security/advisories?name=MDVSA-2010:233

[Broken Link] http://www.mandriva.com/security/advisories?name=MDVSA-2010:234

[Broken Link] http://www.osvdb.org/68951

[Broken Link] http://www.redhat.com/support/errata/RHSA-2010-0866.html

... and 9 more

Scores

CVSS v3 9.8

EPSS 0.2135

EPSS Percentile 95.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-416

Status draft

Affected Products (24)

apple/cups < 1.4.4

apple/mac_os_x < 10.5.8

apple/mac_os_x_server < 10.5.8

fedoraproject/fedora

fedoraproject/fedora

fedoraproject/fedora

canonical/ubuntu_linux

canonical/ubuntu_linux

canonical/ubuntu_linux

canonical/ubuntu_linux

canonical/ubuntu_linux

debian/debian_linux

opensuse/opensuse

opensuse/opensuse

opensuse/opensuse

... and 9 more

Timeline

Published Nov 05, 2010

Tracked Since Feb 18, 2026