CVE-2024-47176

CUPS is a standards-based, open-source printing system, and `cups-browsed` contains network printing functionality including, but not limited to, auto-discovering print services and shared printers. `cups-browsed` binds to `INADDR_ANY:631`, causing it to trust any packet from any source, and can cause the `Get-Printer-Attributes` IPP request to an attacker controlled URL. When combined with other vulnerabilities, such as CVE-2024-47076, CVE-2024-47175, and CVE-2024-47177, an attacker can execute arbitrary commands remotely on the target machine without authentication when a malicious printer is printed to.

Read the notes from the security team

• How can I get the fixes?
• What do statuses mean?

Notes

References

• MITRE
• NVD
• Launchpad
• Debian

Related Ubuntu Security Notices (USN)

• USN-7042-1
• cups-browsed vulnerability
• 26 September 2024
• USN-7043-1
• cups-filters vulnerabilities
• 26 September 2024
• USN-7043-2
• cups-filters vulnerability
• 1 October 2024
• USN-7043-3
• cups-filters vulnerability
• 7 October 2024
• USN-7042-2
• cups-browsed vulnerability
• 9 October 2024
• USN-7043-4
• cups-filters vulnerabilities
• 9 October 2024
• USN-7042-3
• cups-browsed vulnerability
• 21 October 2024

Other references

• https://www.cve.org/CVERecord?id=CVE-2024-47176
• https://github.com/OpenPrinting/cups-browsed/security/advisories/GHSA-rj88-6mr5-rcw8
• https://ubuntu.com/blog/cups-remote-code-execution-vulnerability-fix-available
• https://github.com/OpenPrinting/cups-filters/commit/6fd2bdfbdce (legacy 1.5.x)