CVE-2002-1369

Name of the Vulnerable Software and Affected Versions CUPS versions 1.1.14 through 1.1.17 libcupsys1 versions (affected versions not specified) cups-libs versions (affected versions not specified) cups-devel versions (affected versions not specified)

Description The issue concerns multiple vulnerabilities in the CUPS package, which can lead to a breach of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited remotely. The problem is caused by the improper use of the strncat function call when processing the options string in jobs.c, allowing remote attackers to execute arbitrary code via a buffer overflow attack.

Recommendations For CUPS versions 1.1.14 through 1.1.17, update to a version outside of this range to resolve the issue. For libcupsys1, cups-libs, and cups-devel, at the moment, there is no information about a newer version that contains a fix for this vulnerability.