发布于3月6日3月6日 Members Amazon Linux 2023: CVE-2024-47076: Medium priority package update for cups-filters Severity 8 CVSS (AV:N/AC:L/Au:N/C:P/I:C/A:N) Published 09/26/2024 Created 02/14/2025 Added 02/14/2025 Modified 02/14/2025 Description A flaw was found in OpenPrinting CUPS. In certain conditions, a remote attacker can add a malicious printer or directly hijack an existing printer by replacing the valid IPP URL with a malicious one. Also, it is possible that due to a lack of validation of IPP attributes returned by the server, this issue allows attacker-controlled data to be used on the rest of the CUPS system. Solution(s) amazon-linux-2023-upgrade-cups-filters amazon-linux-2023-upgrade-cups-filters-debuginfo amazon-linux-2023-upgrade-cups-filters-debugsource amazon-linux-2023-upgrade-cups-filters-devel amazon-linux-2023-upgrade-cups-filters-libs amazon-linux-2023-upgrade-cups-filters-libs-debuginfo References https://attackerkb.com/topics/cve-2024-47076 CVE - 2024-47076 https://alas.aws.amazon.com/AL2023/ALAS-2024-723.html
参与讨论
你可立刻发布并稍后注册。 如果你有帐户,立刻登录发布帖子。