Mandriva Linux Security Advisory 2009-029 – Security vulnerabilities have been discovered and corrected in CUPS. CUPS 1.1.17 through 1.3.9 allows remote attackers to execute arbitrary code via a PNG image with a large height value, which bypasses a validation check and triggers a buffer overflow. CUPS shipped with Mandriva Linux allows local users to overwrite arbitrary files via a symlink attack on the /tmp/pdf.log temporary file. The updated packages have been patched to prevent this.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/74292/MDVSA-2009-029.txt
Source: https://packetstormsecurity.com/files/74292/Mandriva-Linux-Security-Advisory-2009-029.html