Description
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to 2.4.17, a network-adjacent attacker can send a crafted SNMP response to the CUPS SNMP backend that causes an out-of-bounds read of up to 176 bytes past a stack buffer. The leaked memory is converted from UTF-16 to UTF-8 and stored as printer supply description strings, which are subsequently visible to authenticated users via IPP Get-Printer-Attributes responses and the CUPS web interface. This vulnerability is fixed in 2.4.17.
Mitigation
Minimal update. May introduce new vulnerabilities or breaking changes.
|
 debian 14 | | =2.4.10-3 || =2.4.10-4 || =2.4.14-1 || =2.4.15-1 || =2.4.16-1 || >=0 <2.4.17-1 | 2.4.17-1 |
debian 13 | | =2.4.10-3 || =2.4.10-3+deb13u1 || =2.4.10-3+deb13u2 || =2.4.10-4 || =2.4.14-1 || =2.4.15-1 || =2.4.16-1 || =2.4.17-1 || =2.4.18-1 | - |
debian 11 | | =2.3.3op2-3+deb11u1 || =2.3.3op2-3+deb11u10 || =2.3.3op2-3+deb11u2 || =2.3.3op2-3+deb11u3 || =2.3.3op2-3+deb11u4 || =2.3.3op2-3+deb11u5 || =2.3.3op2-3+deb11u6 || =2.3.3op2-3+deb11u7 || =2.3.3op2-3+deb11u8 || =2.3.3op2-3+deb11u9 || =2.3.3op2-4 || =2.3.3op2-5 || =2.3.3op2-6 || =2.3.3op2-7 || =2.4.10-1 || =2.4.10-2 || =2.4.10-3 || =2.4.10-4 || =2.4.14-1 || =2.4.15-1 || =2.4.16-1 || =2.4.17-1 || =2.4.18-1 || =2.4.1op1-1 || =2.4.1op1-2 || =2.4.2-1 || =2.4.2-2 || =2.4.2-3 || =2.4.2-4 || =2.4.2-5 || =2.4.2-6 || =2.4.7-1 || =2.4.7-1.1 || =2.4.7-1.2 || =2.4.7-2 || =2.4.7-3 | - |
debian 12 | | =2.4.10-1 || =2.4.10-2 || =2.4.10-3 || =2.4.10-4 || =2.4.14-1 || =2.4.15-1 || =2.4.16-1 || =2.4.17-1 || =2.4.18-1 || =2.4.2-3 || =2.4.2-3+deb12u1 || =2.4.2-3+deb12u2 || =2.4.2-3+deb12u3 || =2.4.2-3+deb12u4 || =2.4.2-3+deb12u5 || =2.4.2-3+deb12u6 || =2.4.2-3+deb12u7 || =2.4.2-3+deb12u8 || =2.4.2-3+deb12u9 || =2.4.2-4 || =2.4.2-5 || =2.4.2-6 || =2.4.7-1 || =2.4.7-1.1 || =2.4.7-1.2 || =2.4.7-2 || =2.4.7-3 | - |
 rpm rhel8 | | - | - |
rpm rhel10 | | - | - |
rpm rhel9 | | - | - |
rpm rhel6 | | - | - |
rpm rhel7 | | - | - |
