CLSA-2026-1768210674 Fix CVE(s): CVE-2025-58436

SECURITY UPDATE: Possible DoS attack caused by a slow client communication - debian/patches/CVE-2025-58436.patch: fix unresponsive cupsd process caused by a slow client - CVE-2025-58436...

CLSA-2024-1734531954 cups: Fix of CVE-2024-35235

CVE-2024-35235: Patch arbitrary chmod vulnerability in cupsd process when starting server with symbolic link Listen configuration item...

CBL Mariner 2.0 Security Update: cups (CVE-2023-34241)

The version of cups installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-34241 advisory. - OpenPrinting CUPS is a standards-based, open source printing system for Linux and other Unix-like operating...

CUPS 2.2.0 < 2.4.6 Use After Free Vulnerability

CUPS is prone to an use after free vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openprinting:cups"; if...

Ubuntu 16.04 ESM / 18.04 ESM : CUPS vulnerability (USN-6184-2)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-6184-2 advisory. USN-6184-1 fixed a vulnerability in CUPS. This update provides the corresponding updates for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Tenable has...

Design/Logic Flaw

OpenPrinting CUPS is a standards-based, open source printing system for Linux and other Unix-like operating systems. Starting in version 2.0.0 and prior to version 2.4.6, CUPS logs data of free memory to the logging service AFTER the connection has been closed, when it should have logged the data...

CVE-2023-34241

OpenPrinting CUPS is a standards-based, open source printing system for Linux and other Unix-like operating systems. Starting in version 2.0.0 and prior to version 2.4.6, CUPS logs data of free memory to the logging service AFTER the connection has been closed, when it should have logged the data...

Slackware Linux 14.2 / 15.0 / current cups Vulnerability (SSA:2023-173-01)

The version of cups installed on the remote host is prior to 2.1.4 / 2.4.6. It is, therefore, affected by a vulnerability as referenced in the SSA:2023-173-01 advisory. - OpenPrinting CUPS is a standards-based, open source printing system for Linux and other Unix-like operating systems. Starting ...

Information Disclosure

cups is vulnerable to information disclosure. The vulnerability exists as an uninitialized memory read issue was found in the CUPS web interface. If an attacker had access to the CUPS web interface, they could use a specially-crafted URL to leverage this flaw to read a limited amount of memory fr...