Description
Heap-based buffer overflow in the unhtmlify function in foomatic-rip in foomatic-filters before 4.0.6 allows remote attackers to cause a denial of service (memory corruption and crash) or possibly execute arbitrary code via a long job title.
References (7)
Core 7
Core References
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=1218297
Third Party Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
Patch, Vendor Advisory x_refsource_confirm
http://bzr.linuxfoundation.org/loggerhead/openprinting/foomatic-4.0/foomatic-filters/annotate/head:/ChangeLog
Various Sources x_refsource_confirm
https://bugs.linuxfoundation.org/show_bug.cgi?id=515
Third Party Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2016-0491.html
Third Party Advisory mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2016/02/15/1
Third Party Advisory mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2016/02/15/7
Scores
CVSS v3
9.8
EPSS
0.0631
EPSS Percentile
91.1%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-119
Status
published
Products (8)
linuxfoundation/foomatic-filters
< 4.0.5
oracle/linux
6
redhat/enterprise_linux
6.0
redhat/enterprise_linux_desktop
6.0
redhat/enterprise_linux_hpc_node
6.0
redhat/enterprise_linux_server
6.0
redhat/enterprise_linux_server_eus
6.7.z
redhat/enterprise_linux_workstation
6.0
Published
Apr 15, 2016
Tracked Since
Feb 18, 2026