[Apollo] Advisories Statistics light light Login

RLSA-2024:7346

Security Mirrored from RHSA-2024:7346
Issued at: 2024-09-30
Updated at: 2024-09-30

Synopsis

Important: cups-filters security update



Description

The cups-filters package contains back ends, filters, and other software that was once part of the core Common UNIX Printing System (CUPS) distribution but is now maintained independently.

Security Fix(es):

* cups-browsed: cups-browsed binds on UDP INADDR_ANY:631 trusting any packet from any source ()

* cups-filters: libcupsfilters: `cfGetPrinterAttributes` API does not perform sanitization on returned IPP attributes (CVE-2024-47076)

* cups: libppd: remote command injection via attacker controlled data in PPD file ()

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 9 aarch64 Rocky Linux 9 ppc64le Rocky Linux 9 s390x Rocky Linux 9 x86_64

Fixes

2314252 2314253 2314256

CVEs

CVE-2024-47076 CVE-2024-47175 CVE-2024-47176

Affected packages

Rocky Linux 9 aarch64 - AppStream

cups-filters-0:1.28.7-17.el9_4.aarch64.rpm cups-filters-0:1.28.7-17.el9_4.src.rpm cups-filters-debuginfo-0:1.28.7-17.el9_4.aarch64.rpm cups-filters-debugsource-0:1.28.7-17.el9_4.aarch64.rpm cups-filters-libs-0:1.28.7-17.el9_4.aarch64.rpm cups-filters-libs-debuginfo-0:1.28.7-17.el9_4.aarch64.rpm

Rocky Linux 9 ppc64le - AppStream

cups-filters-0:1.28.7-17.el9_4.ppc64le.rpm cups-filters-0:1.28.7-17.el9_4.src.rpm cups-filters-debuginfo-0:1.28.7-17.el9_4.ppc64le.rpm cups-filters-debugsource-0:1.28.7-17.el9_4.ppc64le.rpm cups-filters-libs-0:1.28.7-17.el9_4.ppc64le.rpm cups-filters-libs-debuginfo-0:1.28.7-17.el9_4.ppc64le.rpm

Rocky Linux 9 s390x - AppStream

cups-filters-0:1.28.7-17.el9_4.s390x.rpm cups-filters-0:1.28.7-17.el9_4.src.rpm cups-filters-debuginfo-0:1.28.7-17.el9_4.s390x.rpm cups-filters-debugsource-0:1.28.7-17.el9_4.s390x.rpm cups-filters-libs-0:1.28.7-17.el9_4.s390x.rpm cups-filters-libs-debuginfo-0:1.28.7-17.el9_4.s390x.rpm

Rocky Linux 9 x86_64 - CRB

cups-filters-0:1.28.7-17.el9_4.src.rpm cups-filters-devel-0:1.28.7-17.el9_4.i686.rpm cups-filters-devel-0:1.28.7-17.el9_4.x86_64.rpm

Rocky Linux 9 x86_64 - AppStream

cups-filters-0:1.28.7-17.el9_4.src.rpm cups-filters-0:1.28.7-17.el9_4.x86_64.rpm cups-filters-debuginfo-0:1.28.7-17.el9_4.x86_64.rpm cups-filters-debugsource-0:1.28.7-17.el9_4.x86_64.rpm cups-filters-libs-0:1.28.7-17.el9_4.i686.rpm cups-filters-libs-0:1.28.7-17.el9_4.x86_64.rpm cups-filters-libs-debuginfo-0:1.28.7-17.el9_4.x86_64.rpm

Rocky Linux 9 aarch64 - CRB

cups-filters-0:1.28.7-17.el9_4.src.rpm cups-filters-devel-0:1.28.7-17.el9_4.aarch64.rpm

Rocky Linux 9 s390x - CRB

cups-filters-0:1.28.7-17.el9_4.src.rpm cups-filters-devel-0:1.28.7-17.el9_4.s390x.rpm

Rocky Linux 9 ppc64le - CRB

cups-filters-0:1.28.7-17.el9_4.src.rpm cups-filters-devel-0:1.28.7-17.el9_4.ppc64le.rpm