Описание
Security update for cups-filters
This update for cups-filters fixes the following issues:
- cups-browsed would bind on UDP INADDR_ANY:631 and trust any packet from any source to trigger a Get-Printer-Attributes IPP request to an attacker controlled URL. This patch removes support for the legacy CUPS and LDAP protocols, the previous patch fix for this issue was incomplete (bsc#1230939, bsc#1231294, CVE-2024-47176, CVE-2024-47850)
Список пакетов
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server for SAP Applications 12 SP5
Ссылки
- Link for SUSE-SU-2024:3711-1
- E-Mail link for SUSE-SU-2024:3711-1
- SUSE Security Ratings
- SUSE Bug 1230939
- SUSE Bug 1231294
- SUSE CVE CVE-2024-47176 page
- SUSE CVE CVE-2024-47850 page
Описание
CUPS is a standards-based, open-source printing system, and `cups-browsed` contains network printing functionality including, but not limited to, auto-discovering print services and shared printers. `cups-browsed` binds to `INADDR_ANY:631`, causing it to trust any packet from any source, and can cause the `Get-Printer-Attributes` IPP request to an attacker controlled URL. When combined with other vulnerabilities, such as CVE-2024-47076, CVE-2024-47175, and CVE-2024-47177, an attacker can execute arbitrary commands remotely on the target machine without authentication when a malicious printer is printed to.
Затронутые продукты
Ссылки
- CVE-2024-47176
- SUSE Bug 1230932
- SUSE Bug 1230939
Описание
CUPS cups-browsed before 2.5b1 will send an HTTP POST request to an arbitrary destination and port in response to a single IPP UDP packet requesting a printer to be added, a different vulnerability than CVE-2024-47176. (The request is meant to probe the new printer but can be used to create DDoS amplification attacks.)
Затронутые продукты
Ссылки
- CVE-2024-47850
- SUSE Bug 1231294