rpm package
suse/cups-filters&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
pkg:rpm/suse/cups-filters&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSS
Vulnerabilities (4)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-47850 | Hig | 7.5 | < 1.25.0-150200.3.19.2 | 1.25.0-150200.3.19.2 | Oct 4, 2024 | CUPS cups-browsed before 2.5b1 will send an HTTP POST request to an arbitrary destination and port in response to a single IPP UDP packet requesting a printer to be added, a different vulnerability than CVE-2024-47176. (The request is meant to probe the new printer but can be use | |
| CVE-2024-47175 | — | < 1.25.0-150200.3.22.1 | 1.25.0-150200.3.22.1 | Sep 26, 2024 | CUPS is a standards-based, open-source printing system, and `libppd` can be used for legacy PPD file support. The `libppd` function `ppdCreatePPDFromIPP2` does not sanitize IPP attributes when creating the PPD buffer. When used in combination with other functions such as `cfGetPr | ||
| CVE-2024-47076 | — | < 1.25.0-150200.3.19.2 | 1.25.0-150200.3.19.2 | Sep 26, 2024 | CUPS is a standards-based, open-source printing system, and `libcupsfilters` contains the code of the filters of the former `cups-filters` package as library functions to be used for the data format conversion tasks needed in Printer Applications. The `cfGetPrinterAttributes5` fu | ||
| CVE-2024-47176 | — | < 1.25.0-150200.3.16.1 | 1.25.0-150200.3.16.1 | Sep 26, 2024 | CUPS is a standards-based, open-source printing system, and `cups-browsed` contains network printing functionality including, but not limited to, auto-discovering print services and shared printers. `cups-browsed` binds to `INADDR_ANY:631`, causing it to trust any packet from any |
- affected < 1.25.0-150200.3.19.2fixed 1.25.0-150200.3.19.2
CUPS cups-browsed before 2.5b1 will send an HTTP POST request to an arbitrary destination and port in response to a single IPP UDP packet requesting a printer to be added, a different vulnerability than CVE-2024-47176. (The request is meant to probe the new printer but can be use
- CVE-2024-47175Sep 26, 2024affected < 1.25.0-150200.3.22.1fixed 1.25.0-150200.3.22.1
CUPS is a standards-based, open-source printing system, and `libppd` can be used for legacy PPD file support. The `libppd` function `ppdCreatePPDFromIPP2` does not sanitize IPP attributes when creating the PPD buffer. When used in combination with other functions such as `cfGetPr
- CVE-2024-47076Sep 26, 2024affected < 1.25.0-150200.3.19.2fixed 1.25.0-150200.3.19.2
CUPS is a standards-based, open-source printing system, and `libcupsfilters` contains the code of the filters of the former `cups-filters` package as library functions to be used for the data format conversion tasks needed in Printer Applications. The `cfGetPrinterAttributes5` fu
- CVE-2024-47176Sep 26, 2024affected < 1.25.0-150200.3.16.1fixed 1.25.0-150200.3.16.1
CUPS is a standards-based, open-source printing system, and `cups-browsed` contains network printing functionality including, but not limited to, auto-discovering print services and shared printers. `cups-browsed` binds to `INADDR_ANY:631`, causing it to trust any packet from any