Security update for CUPS SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2015:0575-1 Final 1 1 2014-07-29T16:37:43Z current 2014-07-29T16:37:43Z 2014-07-29T16:37:43Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for CUPS This update fixes various issues in CUPS. * CVE-2014-3537 CVE-2014-5029 CVE-2014-5030 CVE-2014-5031: Various insufficient symbolic link checking could have lead to privilege escalation from the lp user to root. Security Issues: * CVE-2014-3537 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3537> * CVE-2014-5029 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5029> * CVE-2014-5030 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5030> * CVE-2014-5031 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5031> The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). sdksp3-cups,sledsp3-cups,slessp3-cups Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2015/suse-su-20150575-1/ Link for SUSE-SU-2015:0575-1 https://lists.suse.com/pipermail/sle-security-updates/2015-March/001311.html E-Mail link for SUSE-SU-2015:0575-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/789566 SUSE Bug 789566 https://bugzilla.suse.com/827109 SUSE Bug 827109 https://bugzilla.suse.com/887240 SUSE Bug 887240 https://bugzilla.suse.com/917799 SUSE Bug 917799 https://bugzilla.suse.com/924208 SUSE Bug 924208 https://www.suse.com/security/cve/CVE-2012-5519/ SUSE CVE CVE-2012-5519 page https://www.suse.com/security/cve/CVE-2014-3537/ SUSE CVE CVE-2014-3537 page https://www.suse.com/security/cve/CVE-2014-5029/ SUSE CVE CVE-2014-5029 page https://www.suse.com/security/cve/CVE-2014-5030/ SUSE CVE CVE-2014-5030 page https://www.suse.com/security/cve/CVE-2014-5031/ SUSE CVE CVE-2014-5031 page https://www.suse.com/security/cve/CVE-2014-9679/ SUSE CVE CVE-2014-9679 page SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 cups-devel-1.3.9-8.46.52.2 cups-1.3.9-8.46.52.2 cups-client-1.3.9-8.46.52.2 cups-libs-1.3.9-8.46.52.2 cups-libs-32bit-1.3.9-8.46.52.2 cups-libs-x86-1.3.9-8.46.52.2 cups-1.3.9-8.46.52.2 as a component of SUSE Linux Enterprise Desktop 11 SP3 cups-client-1.3.9-8.46.52.2 as a component of SUSE Linux Enterprise Desktop 11 SP3 cups-libs-1.3.9-8.46.52.2 as a component of SUSE Linux Enterprise Desktop 11 SP3 cups-libs-32bit-1.3.9-8.46.52.2 as a component of SUSE Linux Enterprise Desktop 11 SP3 cups-1.3.9-8.46.52.2 as a component of SUSE Linux Enterprise Server 11 SP3 cups-client-1.3.9-8.46.52.2 as a component of SUSE Linux Enterprise Server 11 SP3 cups-libs-1.3.9-8.46.52.2 as a component of SUSE Linux Enterprise Server 11 SP3 cups-libs-32bit-1.3.9-8.46.52.2 as a component of SUSE Linux Enterprise Server 11 SP3 cups-libs-x86-1.3.9-8.46.52.2 as a component of SUSE Linux Enterprise Server 11 SP3 cups-1.3.9-8.46.52.2 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA cups-client-1.3.9-8.46.52.2 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA cups-libs-1.3.9-8.46.52.2 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA cups-libs-32bit-1.3.9-8.46.52.2 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA cups-libs-x86-1.3.9-8.46.52.2 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA cups-1.3.9-8.46.52.2 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 cups-client-1.3.9-8.46.52.2 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 cups-libs-1.3.9-8.46.52.2 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 cups-libs-32bit-1.3.9-8.46.52.2 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 cups-libs-x86-1.3.9-8.46.52.2 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 cups-devel-1.3.9-8.46.52.2 as a component of SUSE Linux Enterprise Software Development Kit 11 SP3 CUPS 1.4.4, when running in certain Linux distributions such as Debian GNU/Linux, stores the web interface administrator key in /var/run/cups/certs/0 using certain permissions, which allows local users in the lpadmin group to read or write arbitrary files as root by leveraging the web interface. CVE-2012-5519 SUSE Linux Enterprise Desktop 11 SP3:cups-1.3.9-8.46.52.2 SUSE Linux Enterprise Desktop 11 SP3:cups-client-1.3.9-8.46.52.2 SUSE Linux Enterprise Desktop 11 SP3:cups-libs-1.3.9-8.46.52.2 SUSE Linux Enterprise Desktop 11 SP3:cups-libs-32bit-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-client-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-libs-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-libs-32bit-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-libs-x86-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-client-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-libs-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-libs-32bit-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-libs-x86-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-client-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-libs-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-libs-32bit-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-libs-x86-1.3.9-8.46.52.2 SUSE Linux Enterprise Software Development Kit 11 SP3:cups-devel-1.3.9-8.46.52.2 moderate 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150575-1/ https://www.suse.com/security/cve/CVE-2012-5519.html CVE-2012-5519 https://bugzilla.suse.com/1180148 SUSE Bug 1180148 https://bugzilla.suse.com/789566 SUSE Bug 789566 https://bugzilla.suse.com/882905 SUSE Bug 882905 https://bugzilla.suse.com/924208 SUSE Bug 924208 The web interface in CUPS before 1.7.4 allows local users in the lp group to read arbitrary files via a symlink attack on a file in /var/cache/cups/rss/. CVE-2014-3537 SUSE Linux Enterprise Desktop 11 SP3:cups-1.3.9-8.46.52.2 SUSE Linux Enterprise Desktop 11 SP3:cups-client-1.3.9-8.46.52.2 SUSE Linux Enterprise Desktop 11 SP3:cups-libs-1.3.9-8.46.52.2 SUSE Linux Enterprise Desktop 11 SP3:cups-libs-32bit-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-client-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-libs-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-libs-32bit-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-libs-x86-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-client-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-libs-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-libs-32bit-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-libs-x86-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-client-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-libs-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-libs-32bit-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-libs-x86-1.3.9-8.46.52.2 SUSE Linux Enterprise Software Development Kit 11 SP3:cups-devel-1.3.9-8.46.52.2 moderate 1.2 AV:L/AC:H/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150575-1/ https://www.suse.com/security/cve/CVE-2014-3537.html CVE-2014-3537 https://bugzilla.suse.com/887240 SUSE Bug 887240 The web interface in CUPS 1.7.4 allows local users in the lp group to read arbitrary files via a symlink attack on a file in /var/cache/cups/rss/ and language[0] set to null. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-3537. CVE-2014-5029 SUSE Linux Enterprise Desktop 11 SP3:cups-1.3.9-8.46.52.2 SUSE Linux Enterprise Desktop 11 SP3:cups-client-1.3.9-8.46.52.2 SUSE Linux Enterprise Desktop 11 SP3:cups-libs-1.3.9-8.46.52.2 SUSE Linux Enterprise Desktop 11 SP3:cups-libs-32bit-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-client-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-libs-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-libs-32bit-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-libs-x86-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-client-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-libs-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-libs-32bit-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-libs-x86-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-client-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-libs-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-libs-32bit-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-libs-x86-1.3.9-8.46.52.2 SUSE Linux Enterprise Software Development Kit 11 SP3:cups-devel-1.3.9-8.46.52.2 moderate 1.5 AV:L/AC:M/Au:S/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150575-1/ https://www.suse.com/security/cve/CVE-2014-5029.html CVE-2014-5029 https://bugzilla.suse.com/887240 SUSE Bug 887240 CUPS before 2.0 allows local users to read arbitrary files via a symlink attack on (1) index.html, (2) index.class, (3) index.pl, (4) index.php, (5) index.pyc, or (6) index.py. CVE-2014-5030 SUSE Linux Enterprise Desktop 11 SP3:cups-1.3.9-8.46.52.2 SUSE Linux Enterprise Desktop 11 SP3:cups-client-1.3.9-8.46.52.2 SUSE Linux Enterprise Desktop 11 SP3:cups-libs-1.3.9-8.46.52.2 SUSE Linux Enterprise Desktop 11 SP3:cups-libs-32bit-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-client-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-libs-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-libs-32bit-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-libs-x86-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-client-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-libs-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-libs-32bit-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-libs-x86-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-client-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-libs-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-libs-32bit-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-libs-x86-1.3.9-8.46.52.2 SUSE Linux Enterprise Software Development Kit 11 SP3:cups-devel-1.3.9-8.46.52.2 moderate 1.9 AV:L/AC:M/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150575-1/ https://www.suse.com/security/cve/CVE-2014-5030.html CVE-2014-5030 https://bugzilla.suse.com/887240 SUSE Bug 887240 The web interface in CUPS before 2.0 does not check that files have world-readable permissions, which allows remote attackers to obtains sensitive information via unspecified vectors. CVE-2014-5031 SUSE Linux Enterprise Desktop 11 SP3:cups-1.3.9-8.46.52.2 SUSE Linux Enterprise Desktop 11 SP3:cups-client-1.3.9-8.46.52.2 SUSE Linux Enterprise Desktop 11 SP3:cups-libs-1.3.9-8.46.52.2 SUSE Linux Enterprise Desktop 11 SP3:cups-libs-32bit-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-client-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-libs-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-libs-32bit-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-libs-x86-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-client-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-libs-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-libs-32bit-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-libs-x86-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-client-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-libs-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-libs-32bit-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-libs-x86-1.3.9-8.46.52.2 SUSE Linux Enterprise Software Development Kit 11 SP3:cups-devel-1.3.9-8.46.52.2 moderate 5 AV:N/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150575-1/ https://www.suse.com/security/cve/CVE-2014-5031.html CVE-2014-5031 https://bugzilla.suse.com/887240 SUSE Bug 887240 Integer underflow in the cupsRasterReadPixels function in filter/raster.c in CUPS before 2.0.2 allows remote attackers to have unspecified impact via a malformed compressed raster file, which triggers a buffer overflow. CVE-2014-9679 SUSE Linux Enterprise Desktop 11 SP3:cups-1.3.9-8.46.52.2 SUSE Linux Enterprise Desktop 11 SP3:cups-client-1.3.9-8.46.52.2 SUSE Linux Enterprise Desktop 11 SP3:cups-libs-1.3.9-8.46.52.2 SUSE Linux Enterprise Desktop 11 SP3:cups-libs-32bit-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-client-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-libs-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-libs-32bit-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3-TERADATA:cups-libs-x86-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-client-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-libs-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-libs-32bit-1.3.9-8.46.52.2 SUSE Linux Enterprise Server 11 SP3:cups-libs-x86-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-client-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-libs-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-libs-32bit-1.3.9-8.46.52.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:cups-libs-x86-1.3.9-8.46.52.2 SUSE Linux Enterprise Software Development Kit 11 SP3:cups-devel-1.3.9-8.46.52.2 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150575-1/ https://www.suse.com/security/cve/CVE-2014-9679.html CVE-2014-9679 https://bugzilla.suse.com/917799 SUSE Bug 917799