125 matches found
AZL-71143 CVE-2025-58436 affecting package cups for versions less than 2.4.16-1
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a client that connects to cupsd but sends slow messages, e.g. only one byte per second, delays cupsd as a whole, such that it becomes unusable by other clients. This issue...
EUVD-2025-199892
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a client that connects to cupsd but sends slow messages, e.g. only one byte per second, delays cupsd as a whole, such that it becomes unusable by other clients. This issue...
Security update for cups
This update for cups fixes the following issues: CVE-2025-61915: Fixed a local denial-of-service via cupsd.conf update and related issues. bsc1253783 CVE-2025-58436: Fixed an issue where a slow client communication leads to a possible DoS attack. bsc1244057 Patch Instructions: To install this SUS...
SUSE-SU-2025:4290-1 Security update for cups
This update for cups fixes the following issues: - CVE-2025-61915: Fixed a local denial-of-service via cupsd.conf update and related issues. bsc1253783 - CVE-2025-58436: Fixed an issue where a slow client communication leads to a possible DoS attack. bsc1244057...
Security update for cups
This update for cups fixes the following issues: CVE-2025-61915: Fixed local denial-of-service via cupsd.conf update bsc1253783 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...
[slackware-security] cups
New cups packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/cups-2.4.15-i586-1slack15.0.txz: Upgraded. This update fixes bugs and the following security issues: Fix various cupsd issues which caus...
CLSA-2025-1762544838 cups: Fix of CVE-2024-35235
CVE-2024-35235: patch arbitrary chmod vulnerability in cupsd process when starting server with symbolic link Listen configuration item...
CLSA-2025-1762537354 cups: Fix of CVE-2024-35235
CVE-2024-35235: patch arbitrary chmod vulnerability in cupsd process when starting server with symbolic link Listen configuration item...
CLSA-2025-1762537123 cups: Fix of CVE-2024-35235
CVE-2024-35235: patch arbitrary chmod vulnerability in cupsd process when starting server with symbolic link Listen configuration item...
Medium: cups
Issue Overview: A flaw was found in CUPS, a widely used printing service on Linux and UNIX-like systems. The issue arises when authentication is configured to use a method other than Basic, but the attacker sends an HTTP request with a Basic authentication header. Due to improper validation in th...
cups: Authentication Bypass in CUPS Authorization Handling
A flaw was found in CUPS, a widely used printing service on Linux and UNIX-like systems. The issue arises when authentication is configured to use a method other than Basic, but the attacker sends an HTTP request with a Basic authentication header. Due to improper validation in the cupsdAuthorize...
cups: Authentication Bypass in CUPS Authorization Handling
A flaw was found in CUPS, a widely used printing service on Linux and UNIX-like systems. The issue arises when authentication is configured to use a method other than Basic, but the attacker sends an HTTP request with a Basic authentication header. Due to improper validation in the cupsdAuthorize...
[slackware-security] cups
New cups packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/cups-2.4.14-i586-1slack15.0.txz: Upgraded. This update fixes security issues: Blocked authentication using alternate methods in cupsd...
CLSA-2024-1734531954 cups: Fix of CVE-2024-35235
CVE-2024-35235: Patch arbitrary chmod vulnerability in cupsd process when starting server with symbolic link Listen configuration item...
EulerOS 2.0 SP9 : cups (EulerOS-SA-2024-2384)
According to the versions of the cups package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.8 and earlier, when starting the...
Cupsd Listen arbitrary chmod 0140777
...
cups security update
1:2.3.3op2-27 - Revert the cups-libs license identifier to the 'legacy' format 1:2.3.3op2-26 - RHEL-40388 cups: Cupsd Listen arbitrary chmod 0140777 - Delete the domain socket file after stopping the cups.socket service - Fix cupsd Listener checks 1:2.3.3op2-25 - CVE-2024-35235 cups: Cupsd Listen...
RHEL 9 : cups (RHSA-2024:4776)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:4776 advisory. The Common UNIX Printing System CUPS provides a portable printing layer for Linux, UNIX, and similar operating systems. Security Fixes: cups: Cupsd...
cups: Cupsd Listen arbitrary chmod 0140777
A flaw was found in the cupsd server. When starting the cupsd server with a Listen configuration item pointing to a symbolic link, the cupsd process can perform an arbitrary chmod of the provided argument, providing world-writable access to the target. Since cupsd is often running as root, this...
cups security update
1:2.2.6-60 - RHEL-40386 cups: Cupsd Listen arbitrary chmod 0140777 - Delete the domain socket file after stopping the cups.socket service - Fix cupsd Listener checks 1:2.2.6-59 - RHEL-40386 cups: Cupsd Listen arbitrary chmod 0140777 - Require cups.socket in cupsd service file 1:2.2.6-58 -...