• 2024-09-29: Debian Cups Security Updates

    Home » Forums » AskWoody support » Linux for the Home user » Linux – all distros » 2024-09-29: Debian Cups Security Updates

    Tags:

    Author
    Topic
    Microfix
    AskWoody MVP
    September 29, 2024 at 12:31 pm #2706767

    Affected: LinuxMint, Ubuntu, MXLinux, KDE Neon and many other distro’s and server editions.

    CVE-2024-47076
    https://nvd.nist.gov/vuln/detail/CVE-2024-47076

    CVE-2024-47176
    https://nvd.nist.gov/vuln/detail/CVE-2024-47176

    This poses a significant security risk over the network. Notably, *this vulnerability is particularly concerning as it can be exploited from the public internet, potentially exposing a vast number of systems to remote attacks if their CUPS services are enabled.

    * my bolding for emphasis

    Patches issued 2024-09-29 by debian security team.
    Very unusual for any debian updates over the weekend unless a security issue.

    Received 2 patches to update to the following within the hour.

    cups 2.4.2-3+deb12u8
    cups-browsed 1.28.17-3+deb12u1
    cups-bsd 2.4.2-3+deb12u8
    cups-client 2.4.2-3+deb12u8
    cups-common 2.4.2-3+deb12u8
    cups-core-drivers 2.4.2-3+deb12u8
    cups-daemon 2.4.2-3+deb12u8
    cups-filters 1.28.17-3+deb12u1
    cups-filters-core-drivers 1.28.17-3+deb12u1
    cups-ipp-utils 2.4.2-3+deb12u8
    cups-ppdc 2.4.2-3+deb12u8
    cups-server-common 2.4.2-3+deb12u8
    libcups2 2.4.2-3+deb12u8
    libcupsfilters1 1.28.17-3+deb12u1
    libcupsimage2 2.4.2-3+deb12u8
    libfontembed1 1.28.17-3+deb12u1

    Check and update your Linux distro ASAP using the proprietary
    updater, CLI commands, synaptic or similar.

    Windows - commercial by definition and now function...
    3 users thanked author for this post.
    rc primak, jburk07, Charlie
    Reply | Quote
    Viewing 3 reply threads
    Author
    Replies
    • Charlie
      AskWoody Plus
      September 29, 2024 at 1:10 pm #2706776

      I just got 2.3.1 from my LMC Update Manager on the 27th. These were a security update. This latest should be coming soon.

      Being 20 something in the 70's was so much better than being 70 something in the insane 20's
      1 user thanked author for this post.
      Microfix
      Reply | Quote
    • b
      AskWoody_MVP
      September 30, 2024 at 9:00 am #2706961

      Up to 9% of internet-facing Linux systems affected:

      “Now that the information about these vulnerabilities is public, the ‘bad guys’ will certainly be weaponizing this vulnerability to gain access to vulnerable systems.”

      That doomsday critical Linux bug: It’s CUPS. May lead to remote hijacking of devices

      1 user thanked author for this post.
      rc primak
      Reply | Quote
    • Alex5723
      AskWoody Plus
      November 10, 2024 at 10:45 am #2716273

      Updated Debian 12: 12.8 released

      November 9th, 2024

      The Debian project is pleased to announce the eighth update of its stable distribution Debian 12 (codename bookworm). This point release mainly adds corrections for security issues, along with a few adjustments for serious problems. Security advisories have already been published separately and are referenced where available.

      Reply | Quote
    • Alex5723
      AskWoody Plus
      March 16, 2025 at 1:51 pm #2756156

      Updated Debian 12: 12.10 released

      The Debian project is pleased to announce the tenth update of its stable distribution Debian 12 (codename bookworm). This point release mainly adds corrections for security issues, along with a few adjustments for serious problems. Security advisories have already been published separately and are referenced where available.

      Please note that the point release does not constitute a new version of Debian 12 but only updates some of the packages included. There is no need to throw away old bookworm media. After installation, packages can be upgraded to the current versions using an up-to-date Debian mirror…

      Reply | Quote
    Viewing 3 reply threads
    Reply To: 2024-09-29: Debian Cups Security Updates

    You can use BBCodes to format your content.
    Your account can't use all available BBCodes, they will be stripped before saving.

    Your information:




DON'T MISS OUT!
Subscribe to the Free Newsletter
We promise not to spam you. Unsubscribe at any time.
Invalid email address

View the Forum

  • Recent Replies
  • My Replies
  • My Active Topics
  • New Posts in the Last day
  • Private Messages
  • Knowledge Base
  • How to use the Forums
  • All Forums

    • Recent Topics

    My Profile

    June 2025
    S M T W T F S
    1234567
    891011121314
    15161718192021
    22232425262728
    2930  

    Remembering Woody

     

    Want to Advertise in the free newsletter? How about a gift subscription in honor of a birthday? Send an email to sb@askwoody.com to ask how.

    Mastodon profile for DefConPatch
    Mastodon profile for AskWoody

     

    Home About FAQ Posts & Privacy Forums My Account
    Register Free Newsletter Plus Membership Gift Certificates MS-DEFCON Alerts

    Copyright ©2004-2025 by AskWoody Tech LLC. All Rights Reserved.