| Package | cups |
|---|---|
| Version | 2.2.1-8+deb9u12 (stretch) |
| Related CVEs | CVE-2024-35235 CVE-2024-47175 |
Two issues have been found in cups, the Common UNIX Printing System(tm). This update introduces stronger validations of input data from external printers.
Please be aware that now bugs in the firmware of the printer might be detected. In case of problems, that should appear in the error.log, please update this firmware first.
The other issue is related to domain socket handling, where files might be overwritten.
For Debian 9 stretch, these problems have been fixed in version 2.2.1-8+deb9u12.
We recommend that you upgrade your cups packages.
Further information about Extended LTS security advisories can be found in the dedicated section of our website.