CVE-2024-47076

2024-09-2622:15:04

Debian Security Bug Tracker

security-tracker.debian.org

cups

printing system

vulnerability

cfgetprinterattributes5

ipp attributes

data format conversion

ppd file

data security

CVSS3

8.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N

AI Score

7.2

Confidence

Low

EPSS

Percentile

10.9%

JSON

CUPS is a standards-based, open-source printing system, and libcupsfilters contains the code of the filters of the former cups-filters package as library functions to be used for the data format conversion tasks needed in Printer Applications. The cfGetPrinterAttributes5 function in libcupsfilters does not sanitize IPP attributes returned from an IPP server. When these IPP attributes are used, for instance, to generate a PPD file, this can lead to attacker controlled data to be provided to the rest of the CUPS system.

OSVersionArchitecturePackageVersionFilename
Debian12allcups-filters<= 1.28.17-3cups-filters_1.28.17-3_all.deb
Debian11allcups-filters<= 1.28.7-1+deb11u2cups-filters_1.28.7-1+deb11u2_all.deb
Debian999allcups-filters< 1.28.17-5cups-filters_1.28.17-5_all.deb
Debian13allcups-filters<= 1.28.17-4.1cups-filters_1.28.17-4.1_all.deb
Debian999alllibcupsfilters< 2.0.0-3libcupsfilters_2.0.0-3_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	cups-filters	<= 1.28.17-3	cups-filters_1.28.17-3_all.deb
Debian	11	all	cups-filters	<= 1.28.7-1+deb11u2	cups-filters_1.28.7-1+deb11u2_all.deb
Debian	999	all	cups-filters	< 1.28.17-5	cups-filters_1.28.17-5_all.deb
Debian	13	all	cups-filters	<= 1.28.17-4.1	cups-filters_1.28.17-4.1_all.deb
Debian	999	all	libcupsfilters	< 2.0.0-3	libcupsfilters_2.0.0-3_all.deb