CVE-2014-9679

CWE-119 — Buffer Overflow8 documents8 sources
Severity
6.8MEDIUM
EPSS
7.4%
top 8.28%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple Cups
Timeline
PublishedFeb 19
Latest updateMay 14

Description

Integer underflow in the cupsRasterReadPixels function in filter/raster.c in CUPS before 2.0.2 allows remote attackers to have unspecified impact via a malformed compressed raster file, which triggers a buffer overflow.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages2 packages

â–¶Debiancups< 1.7.5-11+3
â–¶NVDapple/cups2.0.1

🔴Vulnerability Details

3
GHSA
GHSA-m7r3-4c7g-v5h3: Integer underflow in the cupsRasterReadPixels function in filter/raster↗2022-05-14
â–¶
OSV
CVE-2014-9679: Integer underflow in the cupsRasterReadPixels function in filter/raster↗2015-02-19
â–¶
CVEList
CVE-2014-9679: Integer underflow in the cupsRasterReadPixels function in filter/raster↗2015-02-19
â–¶

📋Vendor Advisories

3
Ubuntu
CUPS vulnerability↗2015-02-26
â–¶
Red Hat
cups: cupsRasterReadPixels buffer overflow↗2015-02-10
â–¶
Debian
CVE-2014-9679: cups - Integer underflow in the cupsRasterReadPixels function in filter/raster.c in CUP...↗2014
â–¶

💬Community

1
Bugzilla
CVE-2014-9679 cups: cupsRasterReadPixels buffer overflow↗2015-02-11
â–¶
CVE-2014-9679 (MEDIUM CVSS 6.8) | Integer underflow in the cupsRaster | cvebase.io