[linux-security] cups DoS exploit

[Martin Siegert <siegert@sfu.ca>]

Topic
=====
DoS vulnerability in cups

Problem Description
===================
CUPS is a print spooler.

There exists a vulnerability in the cups IPP (Internet Printing Protocol)
implementation. The IPP implementation is single-threaded, which means only
one request can be serviced at a time. An attacker could make a partial
request that does not time out and therefore creates a denial of service.
In order to exploit this bug, an attacker must have the ability to make a
TCP connection to the IPP port (by default 631).

Affected Versions
=================
cups versions 1.1.18 and earlier (1.1.19rc4 and later are fixed)

Solution
========
upgrade to a patched version for your distribution

RedHat 7.3
----------
rpm -Fvh cups-1.1.14-15.4.i386.rpm \
         cups-libs-1.1.14-15.4.i386.rpm \
         cups-devel-1.1.14-15.4.i386.rpm

RedHat 8.0
----------
rpm -Fvh cups-1.1.17-0.7.i386.rpm \
         cups-libs-1.1.17-0.7.i386.rpm \
         cups-devel-1.1.17-0.7.i386.rpm

RedHat 9
--------
rpm -Fvh cups-1.1.17-13.3.i386.rpm \
         cups-libs-1.1.17-13.3.i386.rpm \
         cups-devel-1.1.17-13.3.i386.rpm

Mandrake 8.2
------------
rpm -Fvh cups-1.1.18-2.1mdk.i586.rpm \
         cups-common-1.1.18-2.1mdk.i586.rpm \
         cups-serial-1.1.18-2.1mdk.i586.rpm \
         libcups1-1.1.18-2.1mdk.i586.rpm \
         libcups1-devel-1.1.18-2.1mdk.i586.rpm

Mandrake 9.0
------------
rpm -Fvh cups-1.1.18-2.1mdk.i586.rpm \
         cups-common-1.1.18-2.1mdk.i586.rpm \
         cups-serial-1.1.18-2.1mdk.i586.rpm \
         libcups1-1.1.18-2.1mdk.i586.rpm \
         libcups1-devel-1.1.18-2.1mdk.i586.rpm

Mandrake 9.1
------------
rpm -Fvh cups-1.1.19-1.1mdk.i586.rpm \
         cups-common-1.1.19-1.1mdk.i586.rpm \
         cups-serial-1.1.19-1.1mdk.i586.rpm \
         libcups1-1.1.19-1.1mdk.i586.rpm \
         libcups1-devel-1.1.19-1.1mdk.i586.rpm