VDB
ALPINE-CVE-2026-34979
ALPINE-CVE-2026-34979
PUBLISHED
CVSS 5.300000190734863 MEDIUM
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.16 and prior, there is a heap-based buffer overflow in the CUPS scheduler when building filter option strings from job attribute. At time of publication, there are no publicly available patches.
Risk Scores
CVSS v3.1
5.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Alpine:v3.20 | cups | 1.5.2-r1, 1.5.0-r1, 1.7.0-r0 |
| Alpine:v3.23 | cups | 1.6.1-r0, 1.6.1-r1, 1.6.2-r0 |
| Alpine:v3.22 | cups | 2.4.9-r0, 1.4.1-r0, 1.4.2-r0 |
| Alpine:v3.21 | cups | 0, 1.4.1-r0, 1.4.2-r0 |
Timeline
- Apr 3, 2026 CVE Published
- Apr 29, 2026 CVE Updated
- Apr 30, 2026 Distribution Patch