stable

cups-2.4.10-7.fc39, cups-browsed-2.0.1-3.fc39, & 2 more

FEDORA-2024-cf6ab63871 created by jforbes 7 months ago for Fedora 39

Fix for remote vulnerabilities against OpenPrinting cups-filters

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2024-cf6ab63871

This update has been submitted for testing by jforbes.

7 months ago

This update's test gating status has been changed to 'waiting'.

7 months ago

This update's test gating status has been changed to 'passed'.

7 months ago

This update has been pushed to testing.

7 months ago
User Icon bytehackr provided feedback 7 months ago
karma
BZ#2314996 [Major Incident] CVE-2024-47176 cups-browsed: cups-browsed binds on UDP INADDR_ANY:631 trusting any packet from any source [fedora-39]
BZ#2314999 [Major Incident] CVE-2024-47076 libcupsfilters: `cfGetPrinterAttributes` API does not perform sanitization on returned IPP attributes [fedora-39]
BZ#2315002 [Major Incident] CVE-2024-47175 libppd: remote command injection via attacker controlled data in PPD file [fedora-39]
BZ#2315003 [Major Incident] CVE-2024-47177 cups-filters: foomatic-rip in cups-filters allows arbitrary command execution via the FoomaticRIPCommandLine PPD parameter [fedora-39]
User Icon pbrobinson provided feedback 7 months ago
karma

This update can be pushed to stable now if the maintainer wishes

7 months ago

This update has been submitted for stable by jforbes.

7 months ago

This update has been pushed to stable.

7 months ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
2
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
14 days
Dates
submitted
7 months ago
in testing
7 months ago
in stable
7 months ago
Builds
4
cups-2.4.10-7.fc39
cups-browsed-2.0.1-3.fc39
libcupsfilters-2.1~b1-3.fc39
libppd-2.1~b1-2.fc39
BZ#2314996 [Major Incident] CVE-2024-47176 cups-browsed: cups-browsed binds on UDP INADDR_ANY:631 trusting any packet from any source [fedora-39]
0
1
BZ#2314999 [Major Incident] CVE-2024-47076 libcupsfilters: `cfGetPrinterAttributes` API does not perform sanitization on returned IPP attributes [fedora-39]
0
1
BZ#2315002 [Major Incident] CVE-2024-47175 libppd: remote command injection via attacker controlled data in PPD file [fedora-39]
0
1
BZ#2315003 [Major Incident] CVE-2024-47177 cups-filters: foomatic-rip in cups-filters allows arbitrary command execution via the FoomaticRIPCommandLine PPD parameter [fedora-39]
0
1
cups-2.4.10-7.fc39
cups-browsed-2.0.1-3.fc39
libcupsfilters-2.1~b1-3.fc39
libppd-2.1~b1-2.fc39

Automated Test Results

Copyright © 2007-2025 Red Hat, Inc. and others.

Running bodhi-server 8.3.0^202504140743git8ca72e0 on bodhi-web-273-kdpwx.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy