Search CVE reports
1 – 2 of 2 results
CUPS is a standards-based, open-source printing system, and `libppd` can be used for legacy PPD file support. The `libppd` function `ppdCreatePPDFromIPP2` does not sanitize IPP attributes when creating the PPD buffer. When used in...
2 affected packages
cups, libppd
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| cups | — | Fixed | Fixed | Fixed | Fixed |
| libppd | — | Fixed | Not affected | Not affected | Not affected |
Some fixes available 18 of 19
Due to failure in validating the length provided by an attacker-crafted PPD PostScript document, CUPS and libppd are susceptible to a heap-based buffer overflow and possibly code execution. This issue has been fixed in...
2 affected packages
cups, libppd
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| cups | Fixed | Fixed | Fixed | Fixed | Fixed |
| libppd | Fixed | Fixed | Needs evaluation | Ignored | Ignored |