Описание
OpenPrinting CUPS is an open source printing system. In versions 2.4.2 and prior, a heap buffer overflow vulnerability would allow a remote attacker to launch a denial of service (DoS) attack. A buffer overflow vulnerability in the function format_log_line could allow remote attackers to cause a DoS on the affected system. Exploitation of the vulnerability can be triggered when the configuration file cupsd.conf sets the value of loglevel to DEBUG. No known patches or workarounds exist at time of publication.
A flaw was found in the Cups package. A buffer overflow vulnerability in the |format_log_line| function could allow remote attackers to cause a denial of service. Exploitation is only possible when the configuration file, cupsd.conf, has the value of loglevel set to DEBUG.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | cups | Out of support scope | ||
| Red Hat Enterprise Linux 7 | cups | Will not fix | ||
| Red Hat Enterprise Linux 8 | cups | Fixed | RHSA-2023:7165 | 14.11.2023 |
| Red Hat Enterprise Linux 8 | cups | Fixed | RHSA-2023:7165 | 14.11.2023 |
| Red Hat Enterprise Linux 8.6 Extended Update Support | cups | Fixed | RHSA-2024:1101 | 05.03.2024 |
| Red Hat Enterprise Linux 8.8 Extended Update Support | cups | Fixed | RHSA-2024:1409 | 19.03.2024 |
| Red Hat Enterprise Linux 9 | cups | Fixed | RHSA-2023:6596 | 07.11.2023 |
| Red Hat Enterprise Linux 9 | cups | Fixed | RHSA-2023:6596 | 07.11.2023 |
Показывать по
Дополнительная информация
Статус:
EPSS
5.9 Medium
CVSS3
Связанные уязвимости
OpenPrinting CUPS is an open source printing system. In versions 2.4.2 and prior, a heap buffer overflow vulnerability would allow a remote attacker to launch a denial of service (DoS) attack. A buffer overflow vulnerability in the function `format_log_line` could allow remote attackers to cause a DoS on the affected system. Exploitation of the vulnerability can be triggered when the configuration file `cupsd.conf` sets the value of `loglevel `to `DEBUG`. No known patches or workarounds exist at time of publication.
OpenPrinting CUPS is an open source printing system. In versions 2.4.2 and prior, a heap buffer overflow vulnerability would allow a remote attacker to launch a denial of service (DoS) attack. A buffer overflow vulnerability in the function `format_log_line` could allow remote attackers to cause a DoS on the affected system. Exploitation of the vulnerability can be triggered when the configuration file `cupsd.conf` sets the value of `loglevel `to `DEBUG`. No known patches or workarounds exist at time of publication.
OpenPrinting CUPS is an open source printing system. In versions 2.4.2 ...
EPSS
5.9 Medium
CVSS3