CVE-2013-6475

Publication date 7 March 2014

Last updated 24 July 2024

Ubuntu priority

Multiple integer overflows in (1) OPVPOutputDev.cxx and (2) oprs/OPVPSplash.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allow remote attackers to execute arbitrary code via a crafted PDF file, which triggers a heap-based buffer overflow.

Read the notes from the security team

Status

Show unmaintained releases

Package	Ubuntu Release	Status

How can I get the fixes?
What do statuses mean?

Notes

mdeslaur

filters used to be in main cups package in lucid

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-2143-1
cups-filters vulnerabilities
12 March 2014

USN-2144-1
CUPS vulnerabilities
12 March 2014

Other references

https://www.cve.org/CVERecord?id=CVE-2013-6475