rpm package
suse/cups&distro=SUSE Linux Enterprise Server 12 SP5
pkg:rpm/suse/cups&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5
Vulnerabilities (11)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-35235 | — | < 1.7.5-20.49.1 | 1.7.5-20.49.1 | Jun 11, 2024 | OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.8 and earlier, when starting the cupsd server with a Listen configuration item pointing to a symbolic link, the cupsd process can be caused to perform an arbitrary | ||
| CVE-2023-4504 | — | < 1.7.5-20.46.1 | 1.7.5-20.46.1 | Sep 21, 2023 | Due to failure in validating the length provided by an attacker-crafted PPD PostScript document, CUPS and libppd are susceptible to a heap-based buffer overflow and possibly code execution. This issue has been fixed in CUPS version 2.4.7, released in September of 2023. | ||
| CVE-2023-32360 | — | < 1.7.5-20.46.1 | 1.7.5-20.46.1 | Jun 23, 2023 | An authentication issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. An unauthenticated user may be able to access recently printed documents. | ||
| CVE-2023-34241 | — | < 1.7.5-20.46.1 | 1.7.5-20.46.1 | Jun 22, 2023 | OpenPrinting CUPS is a standards-based, open source printing system for Linux and other Unix-like operating systems. Starting in version 2.0.0 and prior to version 2.4.6, CUPS logs data of free memory to the logging service AFTER the connection has been closed, when it should hav | ||
| CVE-2023-32324 | — | < 1.7.5-20.39.1 | 1.7.5-20.39.1 | Jun 1, 2023 | OpenPrinting CUPS is an open source printing system. In versions 2.4.2 and prior, a heap buffer overflow vulnerability would allow a remote attacker to launch a denial of service (DoS) attack. A buffer overflow vulnerability in the function `format_log_line` could allow remote at | ||
| CVE-2021-25317 | — | < 1.7.5-20.36.1 | 1.7.5-20.36.1 | May 5, 2021 | A Incorrect Default Permissions vulnerability in the packaging of cups of SUSE Linux Enterprise Server 11-SP4-LTSS, SUSE Manager Server 4.0, SUSE OpenStack Cloud Crowbar 9; openSUSE Leap 15.2, Factory allows local attackers with control of the lp users to create files as root wit | ||
| CVE-2020-10001 | — | < 1.7.5-20.33.1 | 1.7.5-20.33.1 | Apr 2, 2021 | An input validation issue was addressed with improved memory handling. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave. A malicious application may be able to read restricted memory. | ||
| CVE-2019-8842 | — | < 1.7.5-20.33.1 | 1.7.5-20.33.1 | Oct 27, 2020 | A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Catalina 10.15.2, Security Update 2019-002 Mojave, and Security Update 2019-007 High Sierra. In certain configurations, a remote attacker may be able to submit arbitrary print jobs. | ||
| CVE-2019-8696 | — | < 1.7.5-20.26.1 | 1.7.5-20.26.1 | Oct 27, 2020 | A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra. An attacker in a privileged network position may be able to execute arbitrary code. | ||
| CVE-2019-8675 | — | < 1.7.5-20.26.1 | 1.7.5-20.26.1 | Oct 27, 2020 | A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra. An attacker in a privileged network position may be able to execute arbitrary code. | ||
| CVE-2020-3898 | — | < 1.7.5-20.29.1 | 1.7.5-20.29.1 | Oct 22, 2020 | A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.4. An application may be able to gain elevated privileges. |
- CVE-2024-35235Jun 11, 2024affected < 1.7.5-20.49.1fixed 1.7.5-20.49.1
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.8 and earlier, when starting the cupsd server with a Listen configuration item pointing to a symbolic link, the cupsd process can be caused to perform an arbitrary
- CVE-2023-4504Sep 21, 2023affected < 1.7.5-20.46.1fixed 1.7.5-20.46.1
Due to failure in validating the length provided by an attacker-crafted PPD PostScript document, CUPS and libppd are susceptible to a heap-based buffer overflow and possibly code execution. This issue has been fixed in CUPS version 2.4.7, released in September of 2023.
- CVE-2023-32360Jun 23, 2023affected < 1.7.5-20.46.1fixed 1.7.5-20.46.1
An authentication issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. An unauthenticated user may be able to access recently printed documents.
- CVE-2023-34241Jun 22, 2023affected < 1.7.5-20.46.1fixed 1.7.5-20.46.1
OpenPrinting CUPS is a standards-based, open source printing system for Linux and other Unix-like operating systems. Starting in version 2.0.0 and prior to version 2.4.6, CUPS logs data of free memory to the logging service AFTER the connection has been closed, when it should hav
- CVE-2023-32324Jun 1, 2023affected < 1.7.5-20.39.1fixed 1.7.5-20.39.1
OpenPrinting CUPS is an open source printing system. In versions 2.4.2 and prior, a heap buffer overflow vulnerability would allow a remote attacker to launch a denial of service (DoS) attack. A buffer overflow vulnerability in the function `format_log_line` could allow remote at
- CVE-2021-25317May 5, 2021affected < 1.7.5-20.36.1fixed 1.7.5-20.36.1
A Incorrect Default Permissions vulnerability in the packaging of cups of SUSE Linux Enterprise Server 11-SP4-LTSS, SUSE Manager Server 4.0, SUSE OpenStack Cloud Crowbar 9; openSUSE Leap 15.2, Factory allows local attackers with control of the lp users to create files as root wit
- CVE-2020-10001Apr 2, 2021affected < 1.7.5-20.33.1fixed 1.7.5-20.33.1
An input validation issue was addressed with improved memory handling. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave. A malicious application may be able to read restricted memory.
- CVE-2019-8842Oct 27, 2020affected < 1.7.5-20.33.1fixed 1.7.5-20.33.1
A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Catalina 10.15.2, Security Update 2019-002 Mojave, and Security Update 2019-007 High Sierra. In certain configurations, a remote attacker may be able to submit arbitrary print jobs.
- CVE-2019-8696Oct 27, 2020affected < 1.7.5-20.26.1fixed 1.7.5-20.26.1
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra. An attacker in a privileged network position may be able to execute arbitrary code.
- CVE-2019-8675Oct 27, 2020affected < 1.7.5-20.26.1fixed 1.7.5-20.26.1
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra. An attacker in a privileged network position may be able to execute arbitrary code.
- CVE-2020-3898Oct 22, 2020affected < 1.7.5-20.29.1fixed 1.7.5-20.29.1
A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.4. An application may be able to gain elevated privileges.