ELA-1187-1 cups-filters security update

BrowseRemoteProtocols should not include cups protocol

2024-09-29
Packagecups-filters
Version1.0.61-5+deb8u5 (jessie)
Related CVEs CVE-2024-47176


Simone Margaritelli an issue in cups-filters. Multiple bugs in the cups-browsed component can result in the execution of arbitrary commands without authentication when a print job is started.

(Jessie is only affected by CVE-2024-47176; the code for CVE-2024-47076 is not available)



For Debian 8 jessie, these problems have been fixed in version 1.0.61-5+deb8u5.

We recommend that you upgrade your cups-filters packages.

Further information about Extended LTS security advisories can be found in the dedicated section of our website.