:Thomas Pollet has reported a vulnerability in CUPS, which potentially can be exploited by malicious people to compromise a vulnerable system.The vulnerability is caused due to two integer overflow errors in filter/image-png.c when processing PNG files. These can be exploited to cause a heap-based buffer overflow via overly large width and height PNG fields.Successful exploitation may allow execution of arbitrary code.The vulnerability is reported in version 1.3.7. Other versions may also be affected.Solution:Fixed in the SVN repository.Restrict access to trusted users only.Provided and/or discovered by:Thomas PolletOriginal Advisory:http://www.cups.org/str.php?L2790

Original post by kapil