CVE-2008-1373

Name of the Vulnerable Software and Affected Versions CUPS versions prior to 1.2.12-r7 cups versions 1.3.6

Description The issue involves multiple vulnerabilities in the CUPS package, which can be exploited remotely to compromise the confidentiality, integrity, and availability of protected information. A buffer overflow vulnerability exists in the gif read lzw function, allowing remote attackers to have an unknown impact via a GIF file with a large code size value.

Recommendations For CUPS versions prior to 1.2.12-r7, update to version 1.2.12-r7 or later to resolve the issue. For CUPS version 1.3.6, consider disabling the gif read lzw function as a temporary workaround until a patch is available.