CVE-2010-2941

Name: CVE-2010-2941
Creator: NVD / NIST
Published: 2010-11-05T17:00:01.843+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

CRITICALCVSS 9.8/10EPSS 6.47%

Last modified Jun 16, 2026

CVE-2010-2941 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. ipp.c in cupsd in CUPS 1.4.4 and earlier does not properly allocate memory for attribute values with invalid string data types, which allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly execute arbitrary code via a crafted IPP request.. EPSS estimates a 6.47% chance of exploitation in the next 30 days.

Description

ipp.c in cupsd in CUPS 1.4.4 and earlier does not properly allocate memory for attribute values with invalid string data types, which allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly execute arbitrary code via a crafted IPP request.

Metrics

CVSS 3.1

9.8/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

6.47%

92.9th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-416

Affected Software

Vendor	Product	Versions	Update
Apple	Cups	<= 1.4.4	—
Apple	Mac Os X	< 10.5.8	—
Apple	Mac Os X	>= 10.6.0, <= 10.6.4	—
Apple	Mac Os X Server	< 10.5.8	—
Apple	Mac Os X Server	>= 10.6.0, <= 10.6.4	—
Fedoraproject	Fedora	12	—
Fedoraproject	Fedora	13	—
Fedoraproject	Fedora	14	—
Canonical	Ubuntu Linux	6.06	—
Canonical	Ubuntu Linux	8.04	—
Canonical	Ubuntu Linux	9.10	—
Canonical	Ubuntu Linux	10.04	—
Canonical	Ubuntu Linux	10.10	—
Debian	Debian Linux	5.0	—
Opensuse	Opensuse	11.1	—
Opensuse	Opensuse	11.2	—
Opensuse	Opensuse	11.3	—
Suse	Linux Enterprise	10.0	Sp3
Suse	Linux Enterprise	11.0	—
Suse	Linux Enterprise Server	9	—
Redhat	Enterprise Linux	5.0	—
Redhat	Enterprise Linux	6.0	—
Redhat	Enterprise Linux Desktop	5.0	—
Redhat	Enterprise Linux Server	5.0	—
Redhat	Enterprise Linux Workstation	5.0	—

References

http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_mozilla_firefoxBroken Link
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.htmlMailing List
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050977.htmlMailing List
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051277.htmlMailing List
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051301.htmlMailing List
http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00000.htmlMailing List
http://rhn.redhat.com/errata/RHSA-2010-0811.htmlThird Party Advisory
http://secunia.com/advisories/42287Broken Link
http://secunia.com/advisories/42867Broken Link
http://secunia.com/advisories/43521Broken Link
http://security.gentoo.org/glsa/glsa-201207-10.xmlThird Party Advisory
http://securitytracker.com/id?1024662Broken Link, Third Party Advisory, VDB Entry
http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.468323Broken Link
http://support.apple.com/kb/HT4435Broken Link
http://www.debian.org/security/2011/dsa-2176Mailing List, Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2010:232Broken Link
http://www.mandriva.com/security/advisories?name=MDVSA-2010:233Broken Link
http://www.mandriva.com/security/advisories?name=MDVSA-2010:234Broken Link
http://www.osvdb.org/68951Broken Link
http://www.redhat.com/support/errata/RHSA-2010-0866.htmlBroken Link
http://www.securityfocus.com/bid/44530Broken Link, Third Party Advisory, VDB Entry
http://www.ubuntu.com/usn/USN-1012-1Third Party Advisory
http://www.vupen.com/english/advisories/2010/2856Broken Link, Vendor Advisory
http://www.vupen.com/english/advisories/2010/3042Broken Link
http://www.vupen.com/english/advisories/2010/3088Broken Link
http://www.vupen.com/english/advisories/2011/0061Broken Link
http://www.vupen.com/english/advisories/2011/0535Broken Link
https://bugzilla.redhat.com/show_bug.cgi?id=624438Issue Tracking, Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/62882Third Party Advisory, VDB Entry
http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_mozilla_firefoxBroken Link
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.htmlMailing List
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050977.htmlMailing List
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051277.htmlMailing List
http://lists.fedoraproject.org/pipermail/package-announce/2010-November/051301.htmlMailing List
http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00000.htmlMailing List
http://rhn.redhat.com/errata/RHSA-2010-0811.htmlThird Party Advisory
http://secunia.com/advisories/42287Broken Link
http://secunia.com/advisories/42867Broken Link
http://secunia.com/advisories/43521Broken Link
http://security.gentoo.org/glsa/glsa-201207-10.xmlThird Party Advisory
http://securitytracker.com/id?1024662Broken Link, Third Party Advisory, VDB Entry
http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.468323Broken Link
http://support.apple.com/kb/HT4435Broken Link
http://www.debian.org/security/2011/dsa-2176Mailing List, Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2010:232Broken Link
http://www.mandriva.com/security/advisories?name=MDVSA-2010:233Broken Link
http://www.mandriva.com/security/advisories?name=MDVSA-2010:234Broken Link
http://www.osvdb.org/68951Broken Link
http://www.redhat.com/support/errata/RHSA-2010-0866.htmlBroken Link
http://www.securityfocus.com/bid/44530Broken Link, Third Party Advisory, VDB Entry
http://www.ubuntu.com/usn/USN-1012-1Third Party Advisory
http://www.vupen.com/english/advisories/2010/2856Broken Link, Vendor Advisory
http://www.vupen.com/english/advisories/2010/3042Broken Link
http://www.vupen.com/english/advisories/2010/3088Broken Link
http://www.vupen.com/english/advisories/2011/0061Broken Link
http://www.vupen.com/english/advisories/2011/0535Broken Link
https://bugzilla.redhat.com/show_bug.cgi?id=624438Issue Tracking, Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/62882Third Party Advisory, VDB Entry

Timeline

Published: Nov 5, 2010
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2010-2941?

How severe is CVE-2010-2941?

CVE-2010-2941 has a CVSS score of 9.8/10 (CRITICAL severity). The EPSS model estimates a 6.47% probability of exploitation in the next 30 days.

How do I fix CVE-2010-2941?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2010-2941?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST