Description
A missing memory allocation failure check flaw, leading to a NULL pointer
dereference, was found in the CUPS "texttops" filter. An attacker could
create a malicious text file that would cause "texttops" to crash or,
potentially, execute arbitrary code as the "lp" user if the file was
printed. (CVE-2010-0542)
A Cross-Site Request Forgery (CSRF) issue was found in the CUPS web
interface. If a remote attacker could trick a user, who is logged into the
CUPS web interface as an administrator, into visiting a specially-crafted
website, the attacker could reconfigure and disable CUPS, and gain access
to print jobs and system files. (CVE-2010-0540)
An uninitialized memory read issue was found in the CUPS web interface. If
an attacker had access to the CUPS web interface, they could use a
specially-crafted URL to leverage this flaw to read a limited amount of
memory from the cupsd process, possibly obtaining sensitive information.
(CVE-2010-1748)