PT-2026-35713

Name of the Vulnerable Software and Affected Versions glibc versions 2.2 and newer Description The deprecated functions ns printrrf, ns printrr, and fp nquery fail to enforce the caller-supplied buffer length. This can lead to an out-of-bounds write, which occurs when data is written outside the...

CLSA-2026-1777022893 Fix CVE(s): CVE-2026-34980

SECURITY UPDATE: arbitrary PPD keyword injection via job options - debian/patches/CVE-2026-34980.patch: filter control characters from option values and allowlist PPD keywords from filters in scheduler/job.c - CVE-2026-34980...

EUVD-2026-25574

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to 2.4.17, a network-adjacent attacker can send a crafted SNMP response to the CUPS SNMP backend that causes an out-of-bounds read of up to 176 bytes past a stack buffer. The leaked memory i...

CVE-2026-41079 OpenPrinting CUPS: Heap out-of-bounds read in SNMP supply-level polling leaks stack memory to authenticated users

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to 2.4.17, a network-adjacent attacker can send a crafted SNMP response to the CUPS SNMP backend that causes an out-of-bounds read of up to 176 bytes past a stack buffer. The leaked memory i...

CVE-2026-41079

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to 2.4.17, a network-adjacent attacker can send a crafted SNMP response to the CUPS SNMP backend that causes an out-of-bounds read of up to 176 bytes past a stack buffer. The leaked memory i...

CVE-2026-41079

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to 2.4.17, a network-adjacent attacker can send a crafted SNMP response to the CUPS SNMP backend that causes an out-of-bounds read of up to 176 bytes past a stack buffer. The leaked memory i...

CVE-2026-41079 OpenPrinting CUPS: Heap out-of-bounds read in SNMP supply-level polling leaks stack memory to authenticated users

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to 2.4.17, a network-adjacent attacker can send a crafted SNMP response to the CUPS SNMP backend that causes an out-of-bounds read of up to 176 bytes past a stack buffer. The leaked memory i...

CLSA-2026-1777030799 Fix CVE(s): CVE-2026-34980

SECURITY UPDATE: arbitrary code execution via PPD keyword injection - debian/patches/CVE-2026-34980.patch: filter control characters from option values and allowlist PPD keywords merged from CUPSDLOGPPD messages in scheduler/job.c - CVE-2026-34980...

CVE-2026-1789

A vulnerability in the browser-based remote management interface may allow an administrator to access sensitive information on the device via crafted requests, affecting certain production printers and office/small office multifunction printers...

OpenPrinting CUPS 缓冲区错误漏洞

OpenPrinting CUPS is an open-source printing system developed by OpenPrinting Inc., suitable for Linux® and other Unix®-based operating systems. Versions of OpenPrinting CUPS prior to 2.4.17 contained a buffer overflow vulnerability. This vulnerability was exploited by network-related attackers w...

PT-2026-35029

Name of the Vulnerable Software and Affected Versions OpenPrinting CUPS versions prior to 2.4.17 Description A network-adjacent attacker can send a crafted SNMP response to the CUPS SNMP backend, leading to an out-of-bounds read of up to 176 bytes past a stack buffer. The leaked memory is convert...

CVE-2026-1789

CVE-2026-1789 concerns a vulnerability in the browser-based remote management interface used by production printers and office/small office multifunction printers. The issue could allow an administrator to access sensitive device information via crafted requests. Affected software component: brow...

CLSA-2026-1776768072 cups: Fix of 3 CVEs

CVE-2026-34980: filter control characters from option values in the scheduler to prevent PPD keyword injection via Print-Job - CVE-2026-39314: range check job-password-supported to prevent integer underflow in ppdCreateFromIPP - CVE-2026-39316: expire per-printer subscriptions before deleting the...

CLSA-2026-1776767380 cups: Fix of 3 CVEs

CVE-2026-34980: filter control characters from option values in the scheduler to prevent PPD keyword injection via Print-Job - CVE-2026-39314: range check job-password-supported to prevent integer underflow in ppdCreateFromIPP - CVE-2026-39316: expire per-printer subscriptions before deleting the...

[slackware-security] cups

New cups packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/cups-2.4.17-i586-1slack15.0.txz: Upgraded. This update fixes security issues: The scheduler treated local user and group names as...

[SECURITY] Fedora 44 Update: plasma-print-manager-6.6.4-1.fc44

Printer management for KDE...

CVE-2026-4682

Certain HP DeskJet All in One devices may be vulnerable to remote code execution caused by a buffer overflow when specially crafted Web Services for Devices WSD scan requests are improperly validated and handled by the MFP. WSD Scan is a Microsoft Windows–based network scanning protocol that allo...

PT-2026-32866

Name of the Vulnerable Software and Affected Versions Windows USB Print Driver versions prior to April 2026 Description A heap-based buffer overflow in the Windows USB Printing Stack usbprint.sys allows an unauthorized attacker to elevate privileges. This issue can be exploited through a physical...

Microsoft Windows USB Print Driver 安全漏洞

Microsoft Windows USB Print Driver is a USB printer driver developed by Microsoft Corporation. There are security vulnerabilities in Microsoft Windows USB Print Driver. Attackers can exploit these vulnerabilities to gain higher privileges. The following products and versions are affected: Windows...

SUSE CVE-2026-34990

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.16 and prior, a local unprivileged user can coerce cupsd into authenticating to an attacker-controlled localhost IPP service with a reusable Authorization: Local ... token. That...