Описание
Security update for cups
This update for cups fixes the following issues:
- CVE-2025-61915: Fixed a local denial-of-service via cupsd.conf update and related issues. (bsc#1253783)
- CVE-2025-58436: Fixed an issue where a slow client communication leads to a possible DoS attack. (bsc#1244057)
Список пакетов
Container suse/kiosk/firefox-esr:latest
cups-config-2.2.7-150000.3.77.1
libcups2-2.2.7-150000.3.77.1
Container suse/samba-server:latest
cups-config-2.2.7-150000.3.77.1
libcups2-2.2.7-150000.3.77.1
SUSE Linux Enterprise Micro 5.2
cups-config-2.2.7-150000.3.77.1
libcups2-2.2.7-150000.3.77.1
SUSE Linux Enterprise Micro 5.3
cups-config-2.2.7-150000.3.77.1
libcups2-2.2.7-150000.3.77.1
SUSE Linux Enterprise Micro 5.4
cups-config-2.2.7-150000.3.77.1
libcups2-2.2.7-150000.3.77.1
SUSE Linux Enterprise Micro 5.5
cups-config-2.2.7-150000.3.77.1
libcups2-2.2.7-150000.3.77.1
SUSE Linux Enterprise Module for Basesystem 15 SP6
cups-2.2.7-150000.3.77.1
cups-client-2.2.7-150000.3.77.1
cups-config-2.2.7-150000.3.77.1
cups-devel-2.2.7-150000.3.77.1
libcups2-2.2.7-150000.3.77.1
libcupscgi1-2.2.7-150000.3.77.1
libcupsimage2-2.2.7-150000.3.77.1
libcupsmime1-2.2.7-150000.3.77.1
libcupsppdc1-2.2.7-150000.3.77.1
SUSE Linux Enterprise Module for Basesystem 15 SP7
cups-2.2.7-150000.3.77.1
cups-client-2.2.7-150000.3.77.1
cups-config-2.2.7-150000.3.77.1
cups-devel-2.2.7-150000.3.77.1
libcups2-2.2.7-150000.3.77.1
libcupscgi1-2.2.7-150000.3.77.1
libcupsimage2-2.2.7-150000.3.77.1
libcupsmime1-2.2.7-150000.3.77.1
libcupsppdc1-2.2.7-150000.3.77.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP6
libcups2-32bit-2.2.7-150000.3.77.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP7
libcups2-32bit-2.2.7-150000.3.77.1
SUSE Linux Enterprise Module for Development Tools 15 SP6
cups-ddk-2.2.7-150000.3.77.1
SUSE Linux Enterprise Module for Development Tools 15 SP7
cups-ddk-2.2.7-150000.3.77.1
openSUSE Leap 15.6
cups-2.2.7-150000.3.77.1
cups-client-2.2.7-150000.3.77.1
cups-config-2.2.7-150000.3.77.1
cups-ddk-2.2.7-150000.3.77.1
cups-devel-2.2.7-150000.3.77.1
cups-devel-32bit-2.2.7-150000.3.77.1
libcups2-2.2.7-150000.3.77.1
libcups2-32bit-2.2.7-150000.3.77.1
libcupscgi1-2.2.7-150000.3.77.1
libcupscgi1-32bit-2.2.7-150000.3.77.1
libcupsimage2-2.2.7-150000.3.77.1
libcupsimage2-32bit-2.2.7-150000.3.77.1
libcupsmime1-2.2.7-150000.3.77.1
libcupsmime1-32bit-2.2.7-150000.3.77.1
libcupsppdc1-2.2.7-150000.3.77.1
libcupsppdc1-32bit-2.2.7-150000.3.77.1
Ссылки
- Link for SUSE-SU-2025:4290-1
- E-Mail link for SUSE-SU-2025:4290-1
- SUSE Security Ratings
- SUSE Bug 1234225
- SUSE Bug 1244057
- SUSE Bug 1253783
- SUSE CVE CVE-2025-58436 page
- SUSE CVE CVE-2025-61915 page
Описание
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a client that connects to cupsd but sends slow messages, e.g. only one byte per second, delays cupsd as a whole, such that it becomes unusable by other clients. This issue has been patched in version 2.4.15.
Затронутые продукты
Container suse/kiosk/firefox-esr:latest:cups-config-2.2.7-150000.3.77.1
Container suse/kiosk/firefox-esr:latest:libcups2-2.2.7-150000.3.77.1
Container suse/samba-server:latest:cups-config-2.2.7-150000.3.77.1
Container suse/samba-server:latest:libcups2-2.2.7-150000.3.77.1
Ссылки
- CVE-2025-58436
- SUSE Bug 1244057
Описание
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a user in the lpadmin group can use the cups web ui to change the config and insert a malicious line. Then the cupsd process which runs as root will parse the new config and cause an out-of-bound write. This issue has been patched in version 2.4.15.
Затронутые продукты
Container suse/kiosk/firefox-esr:latest:cups-config-2.2.7-150000.3.77.1
Container suse/kiosk/firefox-esr:latest:libcups2-2.2.7-150000.3.77.1
Container suse/samba-server:latest:cups-config-2.2.7-150000.3.77.1
Container suse/samba-server:latest:libcups2-2.2.7-150000.3.77.1
Ссылки
- CVE-2025-61915
- SUSE Bug 1253783