CVE-2007-4045

Name of the Vulnerable Software and Affected Versions: CUPS versions prior to 1.3.5 CUPS service as used in SUSE Linux before 20070720

Description: The issue allows remote attackers to cause problems, including a denial of service, via unspecified vectors related to an incomplete fix that introduced a different problem in SSL negotiation. Multiple vulnerabilities in the CUPS package can lead to violations of confidentiality, integrity, and availability of protected information, and can be exploited remotely.

Recommendations: For CUPS versions prior to 1.3.5, update to version 1.3.5 or later to resolve the issue. For the CUPS service as used in SUSE Linux before 20070720, update to a version released after 20070720 to resolve the issue.