Ubuntu Security Update USN-6844-1: CUPS vulnerability

LinuxBot

Member
Joined
Apr 25, 2017
Messages
6,780
Reaction score
94
Credits
-1,257
Rory McNamara discovered that when starting the cupsd server with a Listen configuration item, the cupsd process fails to validate if bind call passed. An attacker could possibly trick cupsd to perform an arbitrary chmod of the provided argument, providing world-writable access to the target.

Continue reading...
 


Follow Linux.org

Staff online

Members online


Latest posts

Top