Source: cups Version: 2.4.16-1 Severity: important Tags: security upstream X-Debbugs-Cc: [email protected], Debian Security Team <[email protected]>
Hi, The following vulnerability was published for cups. CVE-2026-39316[0]: | OpenPrinting CUPS is an open source printing system for Linux and | other Unix-like operating systems. In versions 2.4.16 and prior, a | use-after-free vulnerability exists in the CUPS scheduler (cupsd) | when temporary printers are automatically deleted. | cupsdDeleteTemporaryPrinters() in scheduler/printers.c calls | cupsdDeletePrinter() without first expiring subscriptions that | reference the printer, leaving cupsd_subscription_t.dest as a | dangling pointer to freed heap memory. The dangling pointer is | subsequently dereferenced at multiple code sites, causing a crash | (denial of service) of the cupsd daemon. With heap grooming, this | can be leveraged for code execution. If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2026-39316 https://www.cve.org/CVERecord?id=CVE-2026-39316 [1] https://github.com/OpenPrinting/cups/security/advisories/GHSA-pjv5-prqp-46rg [2] https://github.com/OpenPrinting/cups/commit/0142eeb58e0d718b7d2e1f0d5dd214bd2192cc7f Please adjust the affected versions in the BTS as needed. Regards, Salvatore
