OpenPrinting CUPS 1.2.7

CPE Details

OpenPrinting CUPS 1.2.7
1.2.7
2022-06-17
11h17 +00:00
2022-06-17
11h22 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:openprinting:cups:1.2.7:*:*:*:*:*:*:*

Informations

Vendor

openprinting

Product

cups

Version

1.2.7

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2023-4504 2023-09-21 22h47 +00:00 Due to failure in validating the length provided by an attacker-crafted PPD PostScript document, CUPS and libppd are susceptible to a heap-based buffer overflow and possibly code execution. This issue has been fixed in CUPS version 2.4.7, released in September of 2023.
7
High
CVE-2023-32324 2023-06-01 16h04 +00:00 OpenPrinting CUPS is an open source printing system. In versions 2.4.2 and prior, a heap buffer overflow vulnerability would allow a remote attacker to launch a denial of service (DoS) attack. A buffer overflow vulnerability in the function `format_log_line` could allow remote attackers to cause a DoS on the affected system. Exploitation of the vulnerability can be triggered when the configuration file `cupsd.conf` sets the value of `loglevel `to `DEBUG`. No known patches or workarounds exist at time of publication.
7.5
High
CVE-2022-26691 2022-05-26 15h47 +00:00 A logic issue was addressed with improved state management. This issue is fixed in Security Update 2022-003 Catalina, macOS Monterey 12.3, macOS Big Sur 11.6.5. An application may be able to gain elevated privileges.
6.7
Medium