CVE-2010-0393

Publication date 3 March 2010

Last updated 24 July 2024

Ubuntu priority

The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, which allows local users to gain privileges via a file that contains crafted localization data with format string specifiers.

Read the notes from the security team

Status

Show unmaintained releases

Package	Ubuntu Release	Status
cups	9.10 karmic	Fixed 1.4.1-5ubuntu2.4
	9.04 jaunty	Fixed 1.3.9-17ubuntu3.6
	8.10 intrepid	Fixed 1.3.9-2ubuntu9.5
	8.04 LTS hardy	Not in release
	6.06 LTS dapper	Not in release
cupsys	9.10 karmic	Not in release
	9.04 jaunty	Not in release
	8.10 intrepid	Not in release
	8.04 LTS hardy	Fixed 1.3.7-1ubuntu3.8
	6.06 LTS dapper	Fixed 1.2.2-0ubuntu0.6.06.17

Notes

mdeslaur

Fortify source removed the root escalation part

References

Related Ubuntu Security Notices (USN)

USN-906-1
CUPS vulnerabilities
3 March 2010

Other references

https://www.cve.org/CVERecord?id=CVE-2010-0393