openEuler 22.03 LTS SP3 update for cups

Published: 2024-10-12 | Updated: 2024-11-22

Risk	High
Patch available	YES
Number of vulnerabilities	2
CVE-ID	CVE-2024-47175 CVE-2024-47176
CWE-ID	CWE-20 CWE-862
Exploitation vector	Network
Public exploit	Public exploit code for vulnerability #1 is available. Public exploit code for vulnerability #2 is available.
Vulnerable software	openEuler Operating systems & Components / Operating system cups-help Operating systems & Components / Operating system package or component cups-filesystem Operating systems & Components / Operating system package or component cups-printerapp Operating systems & Components / Operating system package or component cups-lpd Operating systems & Components / Operating system package or component cups-libs Operating systems & Components / Operating system package or component cups-ipptool Operating systems & Components / Operating system package or component cups-devel Operating systems & Components / Operating system package or component cups-debugsource Operating systems & Components / Operating system package or component cups-debuginfo Operating systems & Components / Operating system package or component cups-client Operating systems & Components / Operating system package or component cups Operating systems & Components / Operating system package or component
Vendor	openEuler

Security Bulletin

This security bulletin contains information about 2 vulnerabilities.

1) Input validation error

EUVDB-ID: #VU97745

Risk: High

CVSSv4.0: 8.8 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N/E:A/U:Amber]

CVE-ID: CVE-2024-47175

CWE-ID: CWE-20 - Improper input validation

Exploit availability: Yes

Description

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists due to ppdCreatePPDFromIPP2 does not sanitize IPP attributes when creating the PPD buffer. A remote attacker can inject attacker-controlled data in the resulting PPD.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

openEuler: 22.03 LTS SP3

cups-help: before 2.4.0-13

cups-filesystem: before 2.4.0-13

cups-printerapp: before 2.4.0-13

cups-lpd: before 2.4.0-13

cups-libs: before 2.4.0-13

cups-ipptool: before 2.4.0-13

cups-devel: before 2.4.0-13

cups-debugsource: before 2.4.0-13

cups-debuginfo: before 2.4.0-13

cups-client: before 2.4.0-13

cups: before 2.4.0-13

CPE2.3

External links

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2024-2222

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

2) Missing Authorization

EUVDB-ID: #VU97743