Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 401
Alerts This Week
Warning Icon 1 401

Ubuntu 25.04: cups-filters Important Denial of Service Vuln USN-7878-2

ubuntu
Calendar Grey November 24, 2025
Dist Ubuntu Esm H88
Critical updates for cups-filters in Ubuntu 25.04 resolve multiple vulnerabilities, enhancing system security and stability.
Several security issues were fixed in cups-filters.

Summary

Several security issues were fixed in cups-filters.

Software Description:

- cups-filters: OpenPrinting CUPS Filters

Details:

USN-7878-1 fixed vulnerabilities in cups-filters, This update provides the

corresponding update for CVE-2025-64524 for Ubuntu 25.04.

Original advisory details:

It was discovered that cups-filters incorrectly handled certain malformed

TIFF image files. A remote attacker could use this issue to cause

cups-filters to crash, resulting in a denial of service, or possibly

execute arbitrary code. This issue only affected Ubuntu 16.04 LTS,

Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS. (CVE-2025-57812)

It was discovered that cups-filters incorrectly handled certain malformed

PDF document files. A remote attacker could use this issue to cause

cups-filters to crash, resulting in a denial of service, or possibly

execute arbitrary code. This issue only affected Ubuntu 16.04 LTS,

Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS. (CVE-202...

Read the Full Advisory

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 25.04
  cups-filters                    2.0.1-0ubuntu3.25.04.1

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-7878-2

https://ubuntu.com/security/notices/USN-7878-1

CVE-2025-64524

Severity
important
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-7878-2

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.