Описание
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a user in the lpadmin group can use the cups web ui to change the config and insert a malicious line. Then the cupsd process which runs as root will parse the new config and cause an out-of-bound write. This issue has been patched in version 2.4.15.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 2.4.12-0ubuntu4 |
| esm-infra/bionic | released | 2.2.7-1ubuntu2.10+esm9 |
| esm-infra/focal | released | 2.3.1-9ubuntu1.9+esm3 |
| esm-infra/xenial | released | 2.1.3-4ubuntu0.11+esm11 |
| jammy | released | 2.4.1op1-1ubuntu4.15 |
| noble | released | 2.4.7-1.2ubuntu7.7 |
| plucky | released | 2.4.12-0ubuntu1.4 |
| questing | released | 2.4.12-0ubuntu3.3 |
| upstream | released | 2.4.15 |
Показывать по
EPSS
6 Medium
CVSS3
Связанные уязвимости
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a user in the lpadmin group can use the cups web ui to change the config and insert a malicious line. Then the cupsd process which runs as root will parse the new config and cause an out-of-bound write. This issue has been patched in version 2.4.15.
OpenPrinting CUPS vulnerable to stack based out-of-bound write
OpenPrinting CUPS is an open source printing system for Linux and othe ...
EPSS
6 Medium
CVSS3