CLSA-2025-1759329269

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1759329269.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2025-1759329269

Upstream

CVE-2023-4504

CVE-2025-58060

Published

2025-10-01T14:34:46Z

Modified

2026-06-01T00:32:01.144840996Z

Summary

cups: Fix of 2 CVEs

Details

CVE-2023-4504: validate length of attacker-crafted PPD PostScript documents to prevent heap-based buffer overflow and possible code execution
CVE-2025-58060: fix authentication bypass issue caused by not checking password when AuthType is not Basic.

References

https://errata.tuxcare.com/els_os/centos8.4els/CLSA-2025-1759329269.html

Affected packages

TuxCare:CentOS:8.4

cups

Package

Name: cups
Purl: pkg:rpm/tuxcare/cups?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.2.6-40.el8.tuxcare.els5

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1759329269.json"

cups-client

Package

Name: cups-client
Purl: pkg:rpm/tuxcare/cups-client?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.2.6-40.el8.tuxcare.els5

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1759329269.json"

cups-devel

Package

Name: cups-devel
Purl: pkg:rpm/tuxcare/cups-devel?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.2.6-40.el8.tuxcare.els5

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1759329269.json"

cups-filesystem

Package

Name: cups-filesystem
Purl: pkg:rpm/tuxcare/cups-filesystem?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.2.6-40.el8.tuxcare.els5

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1759329269.json"

cups-ipptool

Package

Name: cups-ipptool
Purl: pkg:rpm/tuxcare/cups-ipptool?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.2.6-40.el8.tuxcare.els5

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1759329269.json"

cups-libs

Package

Name: cups-libs
Purl: pkg:rpm/tuxcare/cups-libs?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.2.6-40.el8.tuxcare.els5

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1759329269.json"

cups-lpd

Package

Name: cups-lpd
Purl: pkg:rpm/tuxcare/cups-lpd?distro=centos-8.4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.2.6-40.el8.tuxcare.els5

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos8.4els/CLSA-2025-1759329269.json"