Navigation
Recherche
|
Remote exploit of CUPS
jeudi 26 septembre 2024, 23:22 , par LWN.net
Security researcher Simone Margaritelli
has reported a new vulnerability in CUPS, the software that many Linux systems use to manage printers and print jobs. Margaritelli describes the impact of the attack by saying: A remote unauthenticated attacker can silently replace existing printers' (or install new ones) IPP urls with a malicious one, resulting in arbitrary command execution (on the computer) when a print job is started (from that computer). The vulnerability relies on a few related problems in CUPS libraries and utilities; versions before 2.0.1 or 2.1b1 (depending on the component) may be affected. Red Hat has released a security bulletin as well.
https://lwn.net/Articles/991929/
Voir aussi |
56 sources (32 en français)
Date Actuelle
mer. 18 déc. - 12:25 CET
|