Fedora 40: FEDORA-2024-01127974ec critical: libcupsfilters remote issue

fedora

September 28, 2024

Fix for remote vulnerabilities against OpenPrinting cups-filters

Summary

Libcupsfilters provides a library, which implements common functions used

in cups-browsed daemon and printing filters, and additional files

as banner templates and character sets. The filters are used in CUPS daemon

and in printer applications.

Update Information:

Fix for remote vulnerabilities against OpenPrinting cups-filters

Topics Covered

security advisory Fedora remote issue libcupsfilters CUPS daemon printing filters API sanitization

Change Log

* Thu Sep 26 2024 Justin M. Forbes - 1:2.1~b1-3 - Fix for CVE-2024-47076 * Thu Aug 22 2024 Marek Kasik - 1:2.1~b1-2 - Rebuild for poppler 24.08.0

References

[ 1 ] Bug #2314997 - [Major Incident] CVE-2024-47176 cups-browsed: cups-browsed binds on UDP INADDR_ANY:631 trusting any packet from any source [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2314997 [ 2 ] Bug #2315000 - [Major Incident] CVE-2024-47076 libcupsfilters: `cfGetPrinterAttributes` API does not perform sanitization on returned IPP attributes [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2315000 [ 3 ] Bug #2315004 - [Major Incident] CVE-2024-47175 libppd: remote command injection via attacker controlled data in PPD file [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2315004 [ 4 ] Bug #2315005 - [Major Incident] CVE-2024-47177 cups-filters: foomatic-rip in cups-filters allows arbitrary command execution via the FoomaticRIPCommandLine PPD parameter [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2315005

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-01127974ec' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity

critical

Lowest

Low

Medium

High

Critical

Name: libcupsfilters

Product: Fedora 40

Version: 2.1~b1

Release: 3.fc40

URL: https://github.com/OpenPrinting/libcupsfilters

Summary: Library for developing printing filters

Topics Covered

security advisory Fedora remote issue libcupsfilters CUPS daemon printing filters API sanitization

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Fedora 40: FEDORA-2024-01127974ec critical: libcupsfilters remote issue

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Fedora 40: FEDORA-2024-01127974ec critical: libcupsfilters remote issue

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!