WID-SEC-W-2024-2240

Affected Products

Timeline

• Sep 26, 2024 CVE Published
• Jan 12, 2025 CVE Updated
• May 3, 2026 Distribution Patch
• May 3, 2026 Distribution Patch
• May 3, 2026 Distribution Patch
• May 3, 2026 Distribution Patch
• May 3, 2026 Distribution Patch
• May 3, 2026 Distribution Patch
• May 3, 2026 Distribution Patch
• May 3, 2026 Distribution Patch
• May 3, 2026 Distribution Patch
• May 3, 2026 Distribution Patch

References

• https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-2240.json advisory
• https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-2240 advisory
• https://www.evilsocket.net/2024/09/26/Attacking-UNIX-systems-via-CUPS-Part-I/ url
• https://gist.github.com/stong/c8847ef27910ae344a7b5408d9840ee1 url
• https://access.redhat.com/security/vulnerabilities/RHSB-2024-002 url
• https://github.com/OpenPrinting/cups-browsed/security/advisories/GHSA-rj88-6mr5-rcw8 url
• https://github.com/OpenPrinting/libcupsfilters/security/advisories/GHSA-w63j-6g73-wmg5 url
• https://github.com/OpenPrinting/libppd/security/advisories/GHSA-7xfx-47qg-grp6 url
• https://github.com/OpenPrinting/cups-filters/security/advisories/GHSA-p9rh-jxmq-gq47 url
• https://github.com/RickdeJager/cupshax url
• https://bodhi.fedoraproject.org/updates/FEDORA-2024-01127974ec url
• https://ubuntu.com/security/notices/USN-7045-1 url
• https://ubuntu.com/security/notices/USN-7044-1 url
• https://ubuntu.com/security/notices/USN-7043-1 url
• https://ubuntu.com/security/notices/USN-7042-1 url
• https://ubuntu.com/security/notices/USN-7041-1 url
• https://bodhi.fedoraproject.org/updates/FEDORA-2024-cf6ab63871 url
• https://lists.debian.org/debian-lts-announce/2024/09/msg00048.html url
• https://lists.debian.org/debian-lts-announce/2024/09/msg00047.html url
• https://access.redhat.com/errata/RHSA-2024:7346 url

…and 35 more