Vulnerability in Apple Cups
CVE-2010-0542
The _WriteProlog function in texttops.c in texttops in the Text Filter subsystem in CUPS before 1.4.4 does not check the return values of certain calloc calls, which allows remote attackers to cause a denial of service (NULL pointer derefe…
EPSS: 0.044 (89.2th percentile) — read the EPSS interpretation.
Affected products
- Apple Cups — versions 1.1.12, 1.1.9-1, 1.1.6-3
- N/a — versions n/a
Weakness classification (CWE)
References
- product-security@apple.com (x_refsource_CONFIRM, Patch)
- MDVSA-2010:234 (vendor-advisory, x_refsource_MANDRIVA)
- 40943 (vdb-entry, x_refsource_BID)
- product-security@apple.com (x_refsource_CONFIRM, Patch)
- MDVSA-2010:232 (vendor-advisory, x_refsource_MANDRIVA)
- SUSE-SR:2010:023 (vendor-advisory, x_refsource_SUSE)
- DSA-2176 (vendor-advisory, x_refsource_DEBIAN)
- GLSA-201207-10 (vendor-advisory, x_refsource_GENTOO)
- product-security@apple.com (x_refsource_CONFIRM, Patch)
- ADV-2011-0535 (vdb-entry, x_refsource_VUPEN)