CVE-2010-0542

The _WriteProlog function in texttops.c in texttops in the Text Filter subsystem in CUPS before 1.4.4 does not check the return values of certain calloc calls, which allows remote attackers to cause a denial of service (NULL pointer dereference or heap memory corruption) or possibly execute arbitrary code via a crafted file.

Published: 2010-06-21 Last update: 2026-04-29 Assigner: [email protected] Source: [email protected]
NVD Status:ModifiedCVE State: published
View at NVD, CVE.org, EUVD

CVE-2010-0542 is rated Moderate Risk (54.7/100): CVSS Medium severity, with medium exploitation likelihood (EPSS 4.41%). Review affected assets and schedule remediation.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Exploit prediction scoring system (EPSS) score for CVE-2010-0542

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

# Date Old EPSS score New EPSS score Delta (New - Old)
1 2025-03-30 7.67% 4.41% -3.25%
2 2025-03-29 4.41% 7.67% +3.25%
3 2025-03-17 4.41%

Full EPSS history (5 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2010-0542

CVSS metrics for this CVE.

Base score Version Severity Vector Exploitability Impact Score source
6.8 2.0 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P Click to expand
Access vector (AV:N)
Can be exploited remotely over network reachability.
Access complexity (AC:M)
Exploitation needs some favorable conditions, but not exceptional ones.
Authentication (AU:N)
No authentication is required.
Confidentiality impact (C:P)
Partial confidentiality impact.
Integrity impact (I:P)
Partial integrity impact.
Availability impact (A:P)
Partial availability impact.
 8.6 6.4 [email protected]

Weakness enumeration for CVE-2010-0542

OS Trackers for CVE-2010-0542

vendor priority summary link
debian not yet assigned CVE-2010-0542 not yet assigned priority: Debian including 1 source packages (cups), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5. https://security-tracker.debian.org/tracker/CVE-2010-0542
gentoo high CVE-2010-0542: 1 GLSA(s) (201207-10), 1 atom(s) (net-print/cups); latest impact high. https://bugs.gentoo.org/buglist.cgi?quicksearch=CVE-2010-0542
redhat high https://access.redhat.com/security/cve/CVE-2010-0542
suse medium CVE-2010-0542 severity moderate: SUSE including 106 source package names (cups, cups-1.3.9-8.37.1, …), 187 product×package rows across 57 product lines (SLES for SAP Applications 11 SP2, SLES for SAP Applications 11 SP3, … (57 product lines)): Fixed 136, Known Not Affected 51. https://www.suse.com/security/cve/CVE-2010-0542/
ubuntu medium CVE-2010-0542 medium priority: Ubuntu including 2 source packages (cups, cupsys), 12 status rows across 6 suites (dapper, hardy, jaunty, karmic, lucid, upstream): released 7, DNE 5. https://ubuntu.com/security/CVE-2010-0542

Affected software / configurations for CVE-2010-0542

Vendor Product Version Raw CPE
apple cups <= 1.4.3 cpe:2.3:a:apple:cups:*:*:*:*:*:*:*:*
apple cups 1.1 cpe:2.3:a:apple:cups:1.1:*:*:*:*:*:*:*
apple cups 1.1.1 cpe:2.3:a:apple:cups:1.1.1:*:*:*:*:*:*:*
apple cups 1.1.2 cpe:2.3:a:apple:cups:1.1.2:*:*:*:*:*:*:*
apple cups 1.1.3 cpe:2.3:a:apple:cups:1.1.3:*:*:*:*:*:*:*
apple cups 1.1.4 cpe:2.3:a:apple:cups:1.1.4:*:*:*:*:*:*:*
apple cups 1.1.5 cpe:2.3:a:apple:cups:1.1.5:*:*:*:*:*:*:*
apple cups 1.1.5-1 cpe:2.3:a:apple:cups:1.1.5-1:*:*:*:*:*:*:*
apple cups 1.1.5-2 cpe:2.3:a:apple:cups:1.1.5-2:*:*:*:*:*:*:*
apple cups 1.1.6 cpe:2.3:a:apple:cups:1.1.6:*:*:*:*:*:*:*
apple cups 1.1.6-1 cpe:2.3:a:apple:cups:1.1.6-1:*:*:*:*:*:*:*
apple cups 1.1.6-2 cpe:2.3:a:apple:cups:1.1.6-2:*:*:*:*:*:*:*
apple cups 1.1.6-3 cpe:2.3:a:apple:cups:1.1.6-3:*:*:*:*:*:*:*
apple cups 1.1.7 cpe:2.3:a:apple:cups:1.1.7:*:*:*:*:*:*:*
apple cups 1.1.8 cpe:2.3:a:apple:cups:1.1.8:*:*:*:*:*:*:*
apple cups 1.1.9 cpe:2.3:a:apple:cups:1.1.9:*:*:*:*:*:*:*
apple cups 1.1.9-1 cpe:2.3:a:apple:cups:1.1.9-1:*:*:*:*:*:*:*
apple cups 1.1.10 cpe:2.3:a:apple:cups:1.1.10:*:*:*:*:*:*:*
apple cups 1.1.10-1 cpe:2.3:a:apple:cups:1.1.10-1:*:*:*:*:*:*:*
apple cups 1.1.11 cpe:2.3:a:apple:cups:1.1.11:*:*:*:*:*:*:*
apple cups 1.1.12 cpe:2.3:a:apple:cups:1.1.12:*:*:*:*:*:*:*
apple cups 1.1.13 cpe:2.3:a:apple:cups:1.1.13:*:*:*:*:*:*:*
apple cups 1.1.14 cpe:2.3:a:apple:cups:1.1.14:*:*:*:*:*:*:*
apple cups 1.1.15 cpe:2.3:a:apple:cups:1.1.15:*:*:*:*:*:*:*
apple cups 1.1.16 cpe:2.3:a:apple:cups:1.1.16:*:*:*:*:*:*:*
apple cups 1.1.17 cpe:2.3:a:apple:cups:1.1.17:*:*:*:*:*:*:*
apple cups 1.1.18 cpe:2.3:a:apple:cups:1.1.18:*:*:*:*:*:*:*
apple cups 1.1.19 cpe:2.3:a:apple:cups:1.1.19:*:*:*:*:*:*:*
apple cups 1.1.19 cpe:2.3:a:apple:cups:1.1.19:rc1:*:*:*:*:*:*
apple cups 1.1.19 cpe:2.3:a:apple:cups:1.1.19:rc2:*:*:*:*:*:*
apple cups 1.1.19 cpe:2.3:a:apple:cups:1.1.19:rc3:*:*:*:*:*:*
apple cups 1.1.19 cpe:2.3:a:apple:cups:1.1.19:rc4:*:*:*:*:*:*
apple cups 1.1.19 cpe:2.3:a:apple:cups:1.1.19:rc5:*:*:*:*:*:*
apple cups 1.1.20 cpe:2.3:a:apple:cups:1.1.20:*:*:*:*:*:*:*
apple cups 1.1.20 cpe:2.3:a:apple:cups:1.1.20:rc1:*:*:*:*:*:*
apple cups 1.1.20 cpe:2.3:a:apple:cups:1.1.20:rc2:*:*:*:*:*:*
apple cups 1.1.20 cpe:2.3:a:apple:cups:1.1.20:rc3:*:*:*:*:*:*
apple cups 1.1.20 cpe:2.3:a:apple:cups:1.1.20:rc4:*:*:*:*:*:*
apple cups 1.1.20 cpe:2.3:a:apple:cups:1.1.20:rc5:*:*:*:*:*:*
apple cups 1.1.20 cpe:2.3:a:apple:cups:1.1.20:rc6:*:*:*:*:*:*
apple cups 1.1.21 cpe:2.3:a:apple:cups:1.1.21:*:*:*:*:*:*:*
apple cups 1.1.21 cpe:2.3:a:apple:cups:1.1.21:rc1:*:*:*:*:*:*
apple cups 1.1.21 cpe:2.3:a:apple:cups:1.1.21:rc2:*:*:*:*:*:*
apple cups 1.1.22 cpe:2.3:a:apple:cups:1.1.22:*:*:*:*:*:*:*
apple cups 1.1.22 cpe:2.3:a:apple:cups:1.1.22:rc1:*:*:*:*:*:*
apple cups 1.1.22 cpe:2.3:a:apple:cups:1.1.22:rc2:*:*:*:*:*:*
apple cups 1.1.23 cpe:2.3:a:apple:cups:1.1.23:*:*:*:*:*:*:*
apple cups 1.1.23 cpe:2.3:a:apple:cups:1.1.23:rc1:*:*:*:*:*:*
apple cups 1.2 cpe:2.3:a:apple:cups:1.2:b1:*:*:*:*:*:*
apple cups 1.2 cpe:2.3:a:apple:cups:1.2:b2:*:*:*:*:*:*
apple cups 1.2 cpe:2.3:a:apple:cups:1.2:rc1:*:*:*:*:*:*
apple cups 1.2 cpe:2.3:a:apple:cups:1.2:rc2:*:*:*:*:*:*
apple cups 1.2 cpe:2.3:a:apple:cups:1.2:rc3:*:*:*:*:*:*
apple cups 1.2.0 cpe:2.3:a:apple:cups:1.2.0:*:*:*:*:*:*:*
apple cups 1.2.1 cpe:2.3:a:apple:cups:1.2.1:*:*:*:*:*:*:*
apple cups 1.2.2 cpe:2.3:a:apple:cups:1.2.2:*:*:*:*:*:*:*
apple cups 1.2.3 cpe:2.3:a:apple:cups:1.2.3:*:*:*:*:*:*:*
apple cups 1.2.4 cpe:2.3:a:apple:cups:1.2.4:*:*:*:*:*:*:*
apple cups 1.2.5 cpe:2.3:a:apple:cups:1.2.5:*:*:*:*:*:*:*
apple cups 1.2.6 cpe:2.3:a:apple:cups:1.2.6:*:*:*:*:*:*:*
apple cups 1.2.7 cpe:2.3:a:apple:cups:1.2.7:*:*:*:*:*:*:*
apple cups 1.2.8 cpe:2.3:a:apple:cups:1.2.8:*:*:*:*:*:*:*
apple cups 1.2.9 cpe:2.3:a:apple:cups:1.2.9:*:*:*:*:*:*:*
apple cups 1.2.10 cpe:2.3:a:apple:cups:1.2.10:*:*:*:*:*:*:*
apple cups 1.2.11 cpe:2.3:a:apple:cups:1.2.11:*:*:*:*:*:*:*
apple cups 1.2.12 cpe:2.3:a:apple:cups:1.2.12:*:*:*:*:*:*:*
apple cups 1.3 cpe:2.3:a:apple:cups:1.3:b1:*:*:*:*:*:*
apple cups 1.3 cpe:2.3:a:apple:cups:1.3:rc1:*:*:*:*:*:*
apple cups 1.3 cpe:2.3:a:apple:cups:1.3:rc2:*:*:*:*:*:*
apple cups 1.3.0 cpe:2.3:a:apple:cups:1.3.0:*:*:*:*:*:*:*
apple cups 1.3.1 cpe:2.3:a:apple:cups:1.3.1:*:*:*:*:*:*:*
apple cups 1.3.2 cpe:2.3:a:apple:cups:1.3.2:*:*:*:*:*:*:*
apple cups 1.3.3 cpe:2.3:a:apple:cups:1.3.3:*:*:*:*:*:*:*
apple cups 1.3.4 cpe:2.3:a:apple:cups:1.3.4:*:*:*:*:*:*:*
apple cups 1.3.5 cpe:2.3:a:apple:cups:1.3.5:*:*:*:*:*:*:*
apple cups 1.3.6 cpe:2.3:a:apple:cups:1.3.6:*:*:*:*:*:*:*
apple cups 1.3.7 cpe:2.3:a:apple:cups:1.3.7:*:*:*:*:*:*:*
apple cups 1.3.8 cpe:2.3:a:apple:cups:1.3.8:*:*:*:*:*:*:*
apple cups 1.3.9 cpe:2.3:a:apple:cups:1.3.9:*:*:*:*:*:*:*
apple cups 1.3.10 cpe:2.3:a:apple:cups:1.3.10:*:*:*:*:*:*:*

References for CVE-2010-0542

cvelogic Threat Intelligence