USN-7041-2: CUPS vulnerability ›
1 October 2024
CUPS could be made to crash or run programs if it received specially crafted network traffic.
Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package.
To report a security vulnerability in an Ubuntu package, please contact the Security Team.
The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.
1 October 2024
CUPS could be made to crash or run programs if it received specially crafted network traffic.
1 October 2024
ORC could be made to crash or execute arbitrary code
1 October 2024
Python could be made to bypass some restrictions if it received specially crafted input.
1 October 2024
Several security issues were fixed in knot-resolver.
CVE-2019-10190 , CVE-2019-10191 , CVE-2020-12667 , and 1 other
30 September 2024
Flatpak could be made to read and write files in locations it would not normally have access to.
26 September 2024
libppd could be made to run programs if it received specially crafted network traffic.
26 September 2024
libcupsfilters could be made to run programs if it received specially crafted network traffic.
26 September 2024
cups-filters could be made to run programs if it received specially crafted network traffic.
26 September 2024
cups-browsed could be made to run programs if it received specially crafted network traffic.
26 September 2024
CUPS could be made to crash or run programs if it received specially crafted network traffic.