SUSE Security Announcement – The current security update of cups fixes a double-free bug in the function process_browse_data() that can lead to a remote denial-of-service by crashing cupsd or possibly to a remote code execution. The bug can only be exploited if cupsd listens to 631/udp by crafted UDP Browse packets. Additionally two remote denial-of-service bugs were fixed. The first one can be triggered via crafted IPP packets to use a pointer after it was freed and the second issue is a memory-leak caused by a large number of requests to add and remove shared printers.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/64411/SUSE-SA-2008-012.txt
Source: https://packetstormsecurity.com/files/64411/SUSE-SA-2008-012.txt.html