| Package | cups |
|---|---|
| Version | 1.7.5-11+deb8u11 (jessie), 2.2.1-8+deb9u10 (stretch) |
| Related CVEs | CVE-2023-34241 |
An issue has been found in cups, the Common UNIX Printing System(tm). Due to a use-after-free bug an attacker could cause a denial-of-service. In case of having access to the log files, an attacker could also exfiltrate private keys or other sensitive information from the cups daemon.
For Debian 8 jessie, these problems have been fixed in version 1.7.5-11+deb8u11.
For Debian 9 stretch, these problems have been fixed in version 2.2.1-8+deb9u10.
We recommend that you upgrade your cups packages.
Further information about Extended LTS security advisories can be found in the dedicated section of our website.