CVE-2015-1159

Cross-site scripting (XSS) vulnerability in the cgi_puts function in cgi-bin/template.c in the template engine in CUPS before 2.0.3 allows remote attackers to inject arbitrary web script or HTML via the QUERY parameter to help/.
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 98%
Affected Products (NVD)
VendorProductVersion
cupscups
𝑥
≤ 2.0.2
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
cups
bookworm
2.4.2-3+deb12u7
fixed
bookworm (security)
2.4.2-3+deb12u8
fixed
bullseye
2.3.3op2-3+deb11u8
fixed
bullseye (security)
2.3.3op2-3+deb11u9
fixed
sid
2.4.10-2
fixed
trixie
2.4.10-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
cups
precise
Fixed 1.5.3-0ubuntu8.7
released
trusty
Fixed 1.7.2-0ubuntu1.6
released
utopic
Fixed 1.7.5-3ubuntu3.2
released
vivid
Fixed 2.0.2-1ubuntu3.1
released
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
cups
suse enterprise desktop 15
2.2.7-1.24
fixed
suse enterprise desktop 15 SP1
2.2.7-3.11.7
fixed
suse enterprise desktop 15 SP2
2.2.7-3.17.1
fixed
suse enterprise desktop 15 SP3
2.2.7-3.26.1
fixed
suse enterprise desktop 15 SP4
2.2.7-3.26.1
fixed
suse enterprise desktop 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise desktop 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise desktop 15 SP7
2.2.7-150000.3.65.1
fixed
suse enterprise sap 12
1.7.5-9.1
fixed
suse enterprise sap 12 SP5
1.7.5-20.23.1
fixed
suse enterprise sap 15
2.2.7-1.24
fixed
suse enterprise sap 15 SP1
2.2.7-3.11.7
fixed
suse enterprise sap 15 SP2
2.2.7-3.17.1
fixed
suse enterprise sap 15 SP3
2.2.7-3.26.1
fixed
suse enterprise sap 15 SP4
2.2.7-3.26.1
fixed
suse enterprise sap 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise sap 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise sap 15 SP7
2.2.7-150000.3.65.1
fixed
suse enterprise server 12
1.7.5-9.1
fixed
suse enterprise server 12 SP5
1.7.5-20.23.1
fixed
suse enterprise server 15
2.2.7-1.24
fixed
suse enterprise server 15 SP1
2.2.7-3.11.7
fixed
suse enterprise server 15 SP2
2.2.7-3.17.1
fixed
suse enterprise server 15 SP3
2.2.7-3.26.1
fixed
suse enterprise server 15 SP4
2.2.7-3.26.1
fixed
suse enterprise server 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise server 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise server 15 SP7
2.2.7-150000.3.65.1
fixed
cups-client
suse enterprise desktop 15
2.2.7-1.24
fixed
suse enterprise desktop 15 SP1
2.2.7-3.11.7
fixed
suse enterprise desktop 15 SP2
2.2.7-3.17.1
fixed
suse enterprise desktop 15 SP3
2.2.7-3.26.1
fixed
suse enterprise desktop 15 SP4
2.2.7-3.26.1
fixed
suse enterprise desktop 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise desktop 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise desktop 15 SP7
2.2.7-150000.3.65.1
fixed
suse enterprise sap 12
1.7.5-9.1
fixed
suse enterprise sap 12 SP5
1.7.5-20.23.1
fixed
suse enterprise sap 15
2.2.7-1.24
fixed
suse enterprise sap 15 SP1
2.2.7-3.11.7
fixed
suse enterprise sap 15 SP2
2.2.7-3.17.1
fixed
suse enterprise sap 15 SP3
2.2.7-3.26.1
fixed
suse enterprise sap 15 SP4
2.2.7-3.26.1
fixed
suse enterprise sap 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise sap 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise sap 15 SP7
2.2.7-150000.3.65.1
fixed
suse enterprise server 12
1.7.5-9.1
fixed
suse enterprise server 12 SP5
1.7.5-20.23.1
fixed
suse enterprise server 15
2.2.7-1.24
fixed
suse enterprise server 15 SP1
2.2.7-3.11.7
fixed
suse enterprise server 15 SP2
2.2.7-3.17.1
fixed
suse enterprise server 15 SP3
2.2.7-3.26.1
fixed
suse enterprise server 15 SP4
2.2.7-3.26.1
fixed
suse enterprise server 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise server 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise server 15 SP7
2.2.7-150000.3.65.1
fixed
cups-config
suse enterprise desktop 15
2.2.7-1.24
fixed
suse enterprise desktop 15 SP1
2.2.7-3.11.7
fixed
suse enterprise desktop 15 SP2
2.2.7-3.17.1
fixed
suse enterprise desktop 15 SP3
2.2.7-3.26.1
fixed
suse enterprise desktop 15 SP4
2.2.7-3.26.1
fixed
suse enterprise desktop 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise desktop 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise desktop 15 SP7
2.2.7-150000.3.65.1
fixed
suse enterprise sap 15
2.2.7-1.24
fixed
suse enterprise sap 15 SP1
2.2.7-3.11.7
fixed
suse enterprise sap 15 SP2
2.2.7-3.17.1
fixed
suse enterprise sap 15 SP3
2.2.7-3.26.1
fixed
suse enterprise sap 15 SP4
2.2.7-3.26.1
fixed
suse enterprise sap 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise sap 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise sap 15 SP7
2.2.7-150000.3.65.1
fixed
suse enterprise server 15
2.2.7-1.24
fixed
suse enterprise server 15 SP1
2.2.7-3.11.7
fixed
suse enterprise server 15 SP2
2.2.7-3.17.1
fixed
suse enterprise server 15 SP3
2.2.7-3.26.1
fixed
suse enterprise server 15 SP4
2.2.7-3.26.1
fixed
suse enterprise server 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise server 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise server 15 SP7
2.2.7-150000.3.65.1
fixed
cups-devel
suse enterprise desktop 15
2.2.7-1.24
fixed
suse enterprise desktop 15 SP1
2.2.7-3.11.7
fixed
suse enterprise desktop 15 SP2
2.2.7-3.17.1
fixed
suse enterprise desktop 15 SP3
2.2.7-3.26.1
fixed
suse enterprise desktop 15 SP4
2.2.7-3.26.1
fixed
suse enterprise desktop 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise desktop 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise desktop 15 SP7
2.2.7-150000.3.65.1
fixed
suse enterprise sap 15
2.2.7-1.24
fixed
suse enterprise sap 15 SP1
2.2.7-3.11.7
fixed
suse enterprise sap 15 SP2
2.2.7-3.17.1
fixed
suse enterprise sap 15 SP3
2.2.7-3.26.1
fixed
suse enterprise sap 15 SP4
2.2.7-3.26.1
fixed
suse enterprise sap 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise sap 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise sap 15 SP7
2.2.7-150000.3.65.1
fixed
suse enterprise server 15
2.2.7-1.24
fixed
suse enterprise server 15 SP1
2.2.7-3.11.7
fixed
suse enterprise server 15 SP2
2.2.7-3.17.1
fixed
suse enterprise server 15 SP3
2.2.7-3.26.1
fixed
suse enterprise server 15 SP4
2.2.7-3.26.1
fixed
suse enterprise server 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise server 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise server 15 SP7
2.2.7-150000.3.65.1
fixed
cups-libs
suse enterprise sap 12
1.7.5-9.1
fixed
suse enterprise sap 12 SP5
1.7.5-20.23.1
fixed
suse enterprise server 12
1.7.5-9.1
fixed
suse enterprise server 12 SP5
1.7.5-20.23.1
fixed
cups-libs-32bit
suse enterprise sap 12
1.7.5-9.1
fixed
suse enterprise sap 12 SP5
1.7.5-20.23.1
fixed
suse enterprise server 12
1.7.5-9.1
fixed
suse enterprise server 12 SP5
1.7.5-20.23.1
fixed
cups154
suse enterprise sap 12
1.5.4-9.1
fixed
suse enterprise sap 12 SP3
1.5.4-9.1
fixed
suse enterprise sap 12 SP4
1.5.4-9.1
fixed
suse enterprise sap 12 SP5
1.5.4-9.1
fixed
suse enterprise server 12
1.5.4-9.1
fixed
suse enterprise server 12 SP3
1.5.4-9.1
fixed
suse enterprise server 12 SP4
1.5.4-9.1
fixed
suse enterprise server 12 SP5
1.5.4-9.1
fixed
cups154-client
suse enterprise sap 12
1.5.4-9.1
fixed
suse enterprise sap 12 SP3
1.5.4-9.1
fixed
suse enterprise sap 12 SP4
1.5.4-9.1
fixed
suse enterprise sap 12 SP5
1.5.4-9.1
fixed
suse enterprise server 12
1.5.4-9.1
fixed
suse enterprise server 12 SP3
1.5.4-9.1
fixed
suse enterprise server 12 SP4
1.5.4-9.1
fixed
suse enterprise server 12 SP5
1.5.4-9.1
fixed
cups154-filters
suse enterprise sap 12
1.5.4-9.1
fixed
suse enterprise sap 12 SP3
1.5.4-9.1
fixed
suse enterprise sap 12 SP4
1.5.4-9.1
fixed
suse enterprise sap 12 SP5
1.5.4-9.1
fixed
suse enterprise server 12
1.5.4-9.1
fixed
suse enterprise server 12 SP3
1.5.4-9.1
fixed
suse enterprise server 12 SP4
1.5.4-9.1
fixed
suse enterprise server 12 SP5
1.5.4-9.1
fixed
cups154-libs
suse enterprise sap 12
1.5.4-9.1
fixed
suse enterprise sap 12 SP3
1.5.4-9.1
fixed
suse enterprise sap 12 SP4
1.5.4-9.1
fixed
suse enterprise sap 12 SP5
1.5.4-9.1
fixed
suse enterprise server 12
1.5.4-9.1
fixed
suse enterprise server 12 SP3
1.5.4-9.1
fixed
suse enterprise server 12 SP4
1.5.4-9.1
fixed
suse enterprise server 12 SP5
1.5.4-9.1
fixed
libcups2
suse enterprise desktop 15
2.2.7-1.24
fixed
suse enterprise desktop 15 SP1
2.2.7-3.11.7
fixed
suse enterprise desktop 15 SP2
2.2.7-3.17.1
fixed
suse enterprise desktop 15 SP3
2.2.7-3.26.1
fixed
suse enterprise desktop 15 SP4
2.2.7-3.26.1
fixed
suse enterprise desktop 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise desktop 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise desktop 15 SP7
2.2.7-150000.3.65.1
fixed
suse enterprise sap 15
2.2.7-1.24
fixed
suse enterprise sap 15 SP1
2.2.7-3.11.7
fixed
suse enterprise sap 15 SP2
2.2.7-3.17.1
fixed
suse enterprise sap 15 SP3
2.2.7-3.26.1
fixed
suse enterprise sap 15 SP4
2.2.7-3.26.1
fixed
suse enterprise sap 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise sap 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise sap 15 SP7
2.2.7-150000.3.65.1
fixed
suse enterprise server 15
2.2.7-1.24
fixed
suse enterprise server 15 SP1
2.2.7-3.11.7
fixed
suse enterprise server 15 SP2
2.2.7-3.17.1
fixed
suse enterprise server 15 SP3
2.2.7-3.26.1
fixed
suse enterprise server 15 SP4
2.2.7-3.26.1
fixed
suse enterprise server 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise server 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise server 15 SP7
2.2.7-150000.3.65.1
fixed
libcups2-32bit
suse enterprise desktop 15 SP1
2.2.7-3.11.7
fixed
suse enterprise desktop 15 SP2
2.2.7-3.17.1
fixed
suse enterprise desktop 15 SP3
2.2.7-3.26.1
fixed
suse enterprise desktop 15 SP4
2.2.7-3.26.1
fixed
suse enterprise sap 15 SP1
2.2.7-3.11.7
fixed
suse enterprise sap 15 SP2
2.2.7-3.17.1
fixed
suse enterprise sap 15 SP3
2.2.7-3.26.1
fixed
suse enterprise sap 15 SP4
2.2.7-3.26.1
fixed
suse enterprise server 15 SP1
2.2.7-3.11.7
fixed
suse enterprise server 15 SP2
2.2.7-3.17.1
fixed
suse enterprise server 15 SP3
2.2.7-3.26.1
fixed
suse enterprise server 15 SP4
2.2.7-3.26.1
fixed
libcupscgi1
suse enterprise desktop 15
2.2.7-1.24
fixed
suse enterprise desktop 15 SP1
2.2.7-3.11.7
fixed
suse enterprise desktop 15 SP2
2.2.7-3.17.1
fixed
suse enterprise desktop 15 SP3
2.2.7-3.26.1
fixed
suse enterprise desktop 15 SP4
2.2.7-3.26.1
fixed
suse enterprise desktop 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise desktop 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise desktop 15 SP7
2.2.7-150000.3.65.1
fixed
suse enterprise sap 15
2.2.7-1.24
fixed
suse enterprise sap 15 SP1
2.2.7-3.11.7
fixed
suse enterprise sap 15 SP2
2.2.7-3.17.1
fixed
suse enterprise sap 15 SP3
2.2.7-3.26.1
fixed
suse enterprise sap 15 SP4
2.2.7-3.26.1
fixed
suse enterprise sap 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise sap 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise sap 15 SP7
2.2.7-150000.3.65.1
fixed
suse enterprise server 15
2.2.7-1.24
fixed
suse enterprise server 15 SP1
2.2.7-3.11.7
fixed
suse enterprise server 15 SP2
2.2.7-3.17.1
fixed
suse enterprise server 15 SP3
2.2.7-3.26.1
fixed
suse enterprise server 15 SP4
2.2.7-3.26.1
fixed
suse enterprise server 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise server 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise server 15 SP7
2.2.7-150000.3.65.1
fixed
libcupsimage2
suse enterprise desktop 15
2.2.7-1.24
fixed
suse enterprise desktop 15 SP1
2.2.7-3.11.7
fixed
suse enterprise desktop 15 SP2
2.2.7-3.17.1
fixed
suse enterprise desktop 15 SP3
2.2.7-3.26.1
fixed
suse enterprise desktop 15 SP4
2.2.7-3.26.1
fixed
suse enterprise desktop 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise desktop 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise desktop 15 SP7
2.2.7-150000.3.65.1
fixed
suse enterprise sap 15
2.2.7-1.24
fixed
suse enterprise sap 15 SP1
2.2.7-3.11.7
fixed
suse enterprise sap 15 SP2
2.2.7-3.17.1
fixed
suse enterprise sap 15 SP3
2.2.7-3.26.1
fixed
suse enterprise sap 15 SP4
2.2.7-3.26.1
fixed
suse enterprise sap 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise sap 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise sap 15 SP7
2.2.7-150000.3.65.1
fixed
suse enterprise server 15
2.2.7-1.24
fixed
suse enterprise server 15 SP1
2.2.7-3.11.7
fixed
suse enterprise server 15 SP2
2.2.7-3.17.1
fixed
suse enterprise server 15 SP3
2.2.7-3.26.1
fixed
suse enterprise server 15 SP4
2.2.7-3.26.1
fixed
suse enterprise server 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise server 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise server 15 SP7
2.2.7-150000.3.65.1
fixed
libcupsmime1
suse enterprise desktop 15
2.2.7-1.24
fixed
suse enterprise desktop 15 SP1
2.2.7-3.11.7
fixed
suse enterprise desktop 15 SP2
2.2.7-3.17.1
fixed
suse enterprise desktop 15 SP3
2.2.7-3.26.1
fixed
suse enterprise desktop 15 SP4
2.2.7-3.26.1
fixed
suse enterprise desktop 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise desktop 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise desktop 15 SP7
2.2.7-150000.3.65.1
fixed
suse enterprise sap 15
2.2.7-1.24
fixed
suse enterprise sap 15 SP1
2.2.7-3.11.7
fixed
suse enterprise sap 15 SP2
2.2.7-3.17.1
fixed
suse enterprise sap 15 SP3
2.2.7-3.26.1
fixed
suse enterprise sap 15 SP4
2.2.7-3.26.1
fixed
suse enterprise sap 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise sap 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise sap 15 SP7
2.2.7-150000.3.65.1
fixed
suse enterprise server 15
2.2.7-1.24
fixed
suse enterprise server 15 SP1
2.2.7-3.11.7
fixed
suse enterprise server 15 SP2
2.2.7-3.17.1
fixed
suse enterprise server 15 SP3
2.2.7-3.26.1
fixed
suse enterprise server 15 SP4
2.2.7-3.26.1
fixed
suse enterprise server 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise server 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise server 15 SP7
2.2.7-150000.3.65.1
fixed
libcupsppdc1
suse enterprise desktop 15
2.2.7-1.24
fixed
suse enterprise desktop 15 SP1
2.2.7-3.11.7
fixed
suse enterprise desktop 15 SP2
2.2.7-3.17.1
fixed
suse enterprise desktop 15 SP3
2.2.7-3.26.1
fixed
suse enterprise desktop 15 SP4
2.2.7-3.26.1
fixed
suse enterprise desktop 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise desktop 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise desktop 15 SP7
2.2.7-150000.3.65.1
fixed
suse enterprise sap 15
2.2.7-1.24
fixed
suse enterprise sap 15 SP1
2.2.7-3.11.7
fixed
suse enterprise sap 15 SP2
2.2.7-3.17.1
fixed
suse enterprise sap 15 SP3
2.2.7-3.26.1
fixed
suse enterprise sap 15 SP4
2.2.7-3.26.1
fixed
suse enterprise sap 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise sap 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise sap 15 SP7
2.2.7-150000.3.65.1
fixed
suse enterprise server 15
2.2.7-1.24
fixed
suse enterprise server 15 SP1
2.2.7-3.11.7
fixed
suse enterprise server 15 SP2
2.2.7-3.17.1
fixed
suse enterprise server 15 SP3
2.2.7-3.26.1
fixed
suse enterprise server 15 SP4
2.2.7-3.26.1
fixed
suse enterprise server 15 SP5
2.2.7-150000.3.40.1
fixed
suse enterprise server 15 SP6
2.2.7-150000.3.54.1
fixed
suse enterprise server 15 SP7
2.2.7-150000.3.65.1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
cups
RHEL 6
1:1.4.2-67.el6_6.1
fixed
RHEL 7
1:1.6.3-17.el7_1.1
fixed
cups-client
RHEL 7
1:1.6.3-17.el7_1.1
fixed
cups-devel
RHEL 6
1:1.4.2-67.el6_6.1
fixed
RHEL 7
1:1.6.3-17.el7_1.1
fixed
cups-filesystem
RHEL 7
1:1.6.3-17.el7_1.1
fixed
cups-ipptool
RHEL 7
1:1.6.3-17.el7_1.1
fixed
cups-libs
RHEL 6
1:1.4.2-67.el6_6.1
fixed
RHEL 7
1:1.6.3-17.el7_1.1
fixed
cups-lpd
RHEL 6
1:1.4.2-67.el6_6.1
fixed
RHEL 7
1:1.6.3-17.el7_1.1
fixed
cups-php
RHEL 6
1:1.4.2-67.el6_6.1
fixed
Common Weakness Enumeration
References
http://googleprojectzero.blogspot.in/2015/06/owning-internet-printing-case-study-in.html
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10702
http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00003.html
http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00006.html
http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00010.html
http://rhn.redhat.com/errata/RHSA-2015-1123.html
http://www.cups.org/blog.php?L1082
http://www.debian.org/security/2015/dsa-3283
http://www.kb.cert.org/vuls/id/810572
http://www.securityfocus.com/bid/75106
http://www.securitytracker.com/id/1032556
http://www.ubuntu.com/usn/USN-2629-1
https://bugzilla.opensuse.org/show_bug.cgi?id=924208
https://bugzilla.redhat.com/show_bug.cgi?id=1221642
https://code.google.com/p/google-security-research/issues/detail?id=455
https://security.gentoo.org/glsa/201510-07
https://www.cups.org/str.php?L4609
http://googleprojectzero.blogspot.in/2015/06/owning-internet-printing-case-study-in.html
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10702
http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00003.html
http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00006.html
http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00010.html
http://rhn.redhat.com/errata/RHSA-2015-1123.html
http://www.cups.org/blog.php?L1082
http://www.debian.org/security/2015/dsa-3283
http://www.kb.cert.org/vuls/id/810572
http://www.securityfocus.com/bid/75106
http://www.securitytracker.com/id/1032556
http://www.ubuntu.com/usn/USN-2629-1
https://bugzilla.opensuse.org/show_bug.cgi?id=924208
https://bugzilla.redhat.com/show_bug.cgi?id=1221642
https://code.google.com/p/google-security-research/issues/detail?id=455
https://security.gentoo.org/glsa/201510-07
https://www.cups.org/str.php?L4609