cups-filters-1.28.7-11.el9.1
エラータID: AXSA:2023-5962:03
The cups-filters package contains back ends, filters, and other software that was once part of the core Common UNIX Printing System (CUPS) distribution but is now maintained independently.
Security Fix(es):
* cups-filters: remote code execution in cups-filters, beh CUPS backend (CVE-2023-24805)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2023-24805
cups-filters contains backends, filters, and other software required to get the cups printing service working on operating systems other than macos. If you use the Backend Error Handler (beh) to create an accessible network printer, this security vulnerability can cause remote code execution. `beh.c` contains the line `retval = system(cmdline) >> 8;` which calls the `system` command with the operand `cmdline`. `cmdline` contains multiple user controlled, unsanitized values. As a result an attacker with network access to the hosted print server can exploit this vulnerability to inject system commands which are executed in the context of the running server. This issue has been addressed in commit `8f2740357` and is expected to be bundled in the next release. Users are advised to upgrade when possible and to restrict access to network printers in the meantime.
Update packages.
cups-filters contains backends, filters, and other software required to get the cups printing service working on operating systems other than macos. If you use the Backend Error Handler (beh) to create an accessible network printer, this security vulnerability can cause remote code execution. `beh.c` contains the line `retval = system(cmdline) >> 8;` which calls the `system` command with the operand `cmdline`. `cmdline` contains multiple user controlled, unsanitized values. As a result an attacker with network access to the hosted print server can exploit this vulnerability to inject system commands which are executed in the context of the running server. This issue has been addressed in commit `8f2740357` and is expected to be bundled in the next release. Users are advised to upgrade when possible and to restrict access to network printers in the meantime.
N/A
SRPMS
- cups-filters-1.28.7-11.el9.1.src.rpm
MD5: c02d9526a02a9746dab631de5302c550
SHA-256: 9d47821360b73d61427bda73932e3c831cf1d76c358e46475e94c36269bf4bdb
Size: 1.46 MB
Asianux Server 9 for x86_64
- cups-filters-1.28.7-11.el9.1.x86_64.rpm
MD5: 8e0e6824e8cc723a8654d114415a40a4
SHA-256: e406b094a78fbb948ab367317ef2d034e1dd3e502263f2aa7376758212a1545e
Size: 758.37 kB - cups-filters-devel-1.28.7-11.el9.1.i686.rpm
MD5: 8173b52a0e3db320c263479d32a50490
SHA-256: 8bcb0cd3512b30fb9c8fcc8dbc6f068d61f169fe85e45ed212f7b21b60364798
Size: 18.28 kB - cups-filters-devel-1.28.7-11.el9.1.x86_64.rpm
MD5: 43a4f76f6a4aca4e0b68e7d0c9afddbb
SHA-256: a4d4bdeafc15cbdd4edf00fcd8e43123ced265a21f2f3467f755f896e673c3b9
Size: 18.28 kB - cups-filters-libs-1.28.7-11.el9.1.i686.rpm
MD5: 8b6d7d8c184714648d38f14455887145
SHA-256: 6d6a79e208cbaf129fb4c8ab7d3cbc23b3438c6b3c7d288265755eb5c93befaa
Size: 140.36 kB - cups-filters-libs-1.28.7-11.el9.1.x86_64.rpm
MD5: b0e0fe9c75135df591643ca797d0a482
SHA-256: 449fa88c5518b4e1f43bcf00b784fc0855c8a23a53223705641a94c472b3e091
Size: 132.63 kB