VIR Vulnerability Intelligence Relay

CVE-2013-6474

medium
Published 2014-03-14 · Modified 2026-05-06
CVSS v3
CVSS v2
6.8
VIR risk
6.8

Description

Heap-based buffer overflow in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows remote attackers to execute arbitrary code via a crafted PDF file.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2013-6474

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7176

OS impact
OSVersionStatusFixed in
debian debianbookwormfixed1.5.0-16
debian debianbullseyefixed1.5.0-16
debian debianforkyfixed1.5.0-16
debian debiansidfixed1.5.0-16
debian debiantrixiefixed1.5.0-16
ubuntu ubuntu10.04affected
ubuntu ubuntu12.04affected
ubuntu ubuntu12.10affected
ubuntu ubuntu13.10affected
debian debianaffected
fedora fedoraaffected

Application impact
VendorProductVersionsFixed
linuxfoundationcups-filters{"endIncluding":"1.0.46"}
linuxfoundationcups-filters1.0
linuxfoundationcups-filters1.0.1
linuxfoundationcups-filters1.0.2
linuxfoundationcups-filters1.0.3
linuxfoundationcups-filters1.0.4
linuxfoundationcups-filters1.0.5
linuxfoundationcups-filters1.0.6
linuxfoundationcups-filters1.0.7
linuxfoundationcups-filters1.0.8
linuxfoundationcups-filters1.0.9
linuxfoundationcups-filters1.0.10
linuxfoundationcups-filters1.0.11
linuxfoundationcups-filters1.0.12
linuxfoundationcups-filters1.0.13
linuxfoundationcups-filters1.0.14
linuxfoundationcups-filters1.0.15
linuxfoundationcups-filters1.0.16
linuxfoundationcups-filters1.0.17
linuxfoundationcups-filters1.0.18
linuxfoundationcups-filters1.0.19
linuxfoundationcups-filters1.0.20
linuxfoundationcups-filters1.0.21
linuxfoundationcups-filters1.0.22
linuxfoundationcups-filters1.0.23
linuxfoundationcups-filters1.0.24
linuxfoundationcups-filters1.0.25
linuxfoundationcups-filters1.0.26
linuxfoundationcups-filters1.0.27
linuxfoundationcups-filters1.0.28
linuxfoundationcups-filters1.0.29
linuxfoundationcups-filters1.0.30
linuxfoundationcups-filters1.0.31
linuxfoundationcups-filters1.0.32
linuxfoundationcups-filters1.0.33
linuxfoundationcups-filters1.0.34
linuxfoundationcups-filters1.0.35
linuxfoundationcups-filters1.0.36
linuxfoundationcups-filters1.0.37
linuxfoundationcups-filters1.0.38
linuxfoundationcups-filters1.0.39
linuxfoundationcups-filters1.0.40
linuxfoundationcups-filters1.0.41
linuxfoundationcups-filters1.0.42
linuxfoundationcups-filters1.0.43
linuxfoundationcups-filters1.0.44
linuxfoundationcups-filters1.0.45

References

CWEs

CWE-119

Verify integrity in audit chain (admin only). AS-IS.