Signature Detail

APP: CUPS JBIG2 Symbol Dictionary Buffer Overflow

This signature detects attempts to exploit a known vulnerability in CUPS and Xpdf products. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the affected application.

Extended Description

CUPS and Xpdf are prone to a remote buffer-overflow vulnerability because they fail to properly bounds-check user-supplied input before copying it into a finite-sized buffer. Exploiting this issue may allow remote attackers to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely cause denial-of-service conditions. The following are vulnerable; other applications or versions may also be affected: Xpdf 3.02pl2 and earlier CUPS 1.3.9 and earlier NOTE: This vulnerability may already be covered in BID 34568 (Xpdf JBIG2 Processing Multiple Security Vulnerabilities). We will update (or possibly retire) this BID as more information emerges.

Affected Products

• Easy Software Products CUPS 1.0.4
• Easy Software Products CUPS 1.0.4 -8
• Easy Software Products CUPS 1.1.1
• Easy Software Products CUPS 1.1.10
• Easy Software Products CUPS 1.1.12
• Easy Software Products CUPS 1.1.13
• Easy Software Products CUPS 1.1.14
• Easy Software Products CUPS 1.1.15
• Easy Software Products CUPS 1.1.16
• Easy Software Products CUPS 1.1.17
• Easy Software Products CUPS 1.1.18
• Easy Software Products CUPS 1.1.19
• Easy Software Products CUPS 1.1.19 Rc5
• Easy Software Products CUPS 1.1.20
• Easy Software Products CUPS 1.1.21
• Easy Software Products CUPS 1.1.22
• Easy Software Products CUPS 1.1.22 Rc1
• Easy Software Products CUPS 1.1.23
• Easy Software Products CUPS 1.1.23 Rc1
• Easy Software Products CUPS 1.1.4
• Easy Software Products CUPS 1.1.4 -2
• Easy Software Products CUPS 1.1.4 -3
• Easy Software Products CUPS 1.1.4 -5
• Easy Software Products CUPS 1.1.6
• Easy Software Products CUPS 1.1.7
• Easy Software Products CUPS 1.2.10
• Easy Software Products CUPS 1.2.12
• Easy Software Products CUPS 1.2.2
• Easy Software Products CUPS 1.2.4
• Easy Software Products CUPS 1.2.8
• Easy Software Products CUPS 1.2.9
• Easy Software Products CUPS 1.3.2
• Easy Software Products CUPS 1.3.3
• Easy Software Products CUPS 1.3.5
• Easy Software Products CUPS 1.3.6
• Easy Software Products CUPS 1.3.7
• Easy Software Products CUPS 1.3.8
• Easy Software Products CUPS 1.3.9
• GNOME GPdf 2.8.2
• Mandriva Corporate Server 3.0.0
• Mandriva Corporate Server 3.0.0 X86 64
• Mandriva Corporate Server 4.0
• Mandriva Corporate Server 4.0.0 X86 64
• Mandriva Enterprise Server 5
• Mandriva Enterprise Server 5 X86 64
• Mandriva Linux Mandrake 2008.0
• Mandriva Linux Mandrake 2008.0 X86 64
• Mandriva Linux Mandrake 2009.0
• Mandriva Linux Mandrake 2009.0 X86 64
• Mandriva Multi Network Firewall 2.0.0
• Pardus Linux 2008
• Red Hat Enterprise Linux 5 Server
• Red Hat Enterprise Linux Desktop Version 4
• Red Hat Enterprise Linux AS 4
• Red Hat Enterprise Linux Desktop 5 Client
• Red Hat Enterprise Linux Desktop Workstation 5 Client
• Red Hat Enterprise Linux ES 4
• Red Hat Enterprise Linux WS 4
• Red Hat Fedora 11
• Ubuntu Ubuntu Linux 9.04 Amd64
• Ubuntu Ubuntu Linux 9.04 I386
• Ubuntu Ubuntu Linux 9.04 Lpia
• Ubuntu Ubuntu Linux 9.04 Powerpc
• Ubuntu Ubuntu Linux 9.04 Sparc
• Xpdf 3.0.0 0
• Xpdf 3.0.0 1
• Xpdf 3.0.0 1Pl1
• Xpdf 3.0.0 Pl2
• Xpdf 3.0.0 Pl3
• Xpdf 3.01
• Xpdf 3.0.1 (Patch 2)
• Xpdf 3.02
• Xpdf 3.02Pl1
• Xpdf 3.02Pl2

References

• BugTraq: 34791
• CVE: CVE-2009-0195