Home / mailingsPDF  

[SECURITY] [DSA 5779-1] cups security update

Posted on 29 September 2024
Debian Security Advisory

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5779-1 security@debian.org
https://www.debian.org/security/ Salvatore Bonaccorso
September 29, 2024 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : cups
CVE ID : CVE-2024-47175

Simone Margaritelli reported that cups, the Common UNIX Printing System,
does not properly sanitize IPP attributes when creating PPD files, which
may result in the execution of arbitrary code.

For the stable distribution (bookworm), this problem has been fixed in
version 2.4.2-3+deb12u8.

We recommend that you upgrade your cups packages.

For the detailed security status of cups please refer to its security
tracker page at:
https://security-tracker.debian.org/tracker/cups

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org

 

TOP