CLSA-2026-1777042487

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1777042487.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2026-1777042487

Upstream

CVE-2026-34980

Published

2026-04-24T16:18:05Z

Modified

2026-06-04T09:45:24.695634764Z

Summary

Fix CVE(s): CVE-2026-34980

Details

SECURITY UPDATE: filter control characters from option values in the scheduler to prevent PPD keyword injection via Print-Job.
- debian/patches/CVE-2026-34980.patch: filter out control characters from IPP option values in scheduler/job.c and filter out special PPD keywords in the CUPSDLOGPPD branch of update_job().
- CVE-2026-34980.

References

https://errata.tuxcare.com/els_os/debian10els/CLSA-2026-1777042487.html

Affected packages

TuxCare:Debian:10

cups

Package

Name: cups
Purl: pkg:deb/tuxcare/cups?distro=debian-10

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.2.10-6+deb10u10+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1777042487.json"

cups-bsd

Package

Name: cups-bsd
Purl: pkg:deb/tuxcare/cups-bsd?distro=debian-10

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.2.10-6+deb10u10+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1777042487.json"

cups-client

Package

Name: cups-client
Purl: pkg:deb/tuxcare/cups-client?distro=debian-10

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.2.10-6+deb10u10+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1777042487.json"

cups-common

Package

Name: cups-common
Purl: pkg:deb/tuxcare/cups-common?distro=debian-10

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.2.10-6+deb10u10+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1777042487.json"

cups-core-drivers

Package

Name: cups-core-drivers
Purl: pkg:deb/tuxcare/cups-core-drivers?distro=debian-10

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.2.10-6+deb10u10+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1777042487.json"

cups-daemon

Package

Name: cups-daemon
Purl: pkg:deb/tuxcare/cups-daemon?distro=debian-10

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.2.10-6+deb10u10+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1777042487.json"

cups-ipp-utils

Package

Name: cups-ipp-utils
Purl: pkg:deb/tuxcare/cups-ipp-utils?distro=debian-10

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.2.10-6+deb10u10+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1777042487.json"

cups-ppdc

Package

Name: cups-ppdc
Purl: pkg:deb/tuxcare/cups-ppdc?distro=debian-10

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.2.10-6+deb10u10+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1777042487.json"

cups-server-common

Package

Name: cups-server-common
Purl: pkg:deb/tuxcare/cups-server-common?distro=debian-10

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.2.10-6+deb10u10+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1777042487.json"

libcups2

Package

Name: libcups2
Purl: pkg:deb/tuxcare/libcups2?distro=debian-10

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.2.10-6+deb10u10+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1777042487.json"

libcups2-dev

Package

Name: libcups2-dev
Purl: pkg:deb/tuxcare/libcups2-dev?distro=debian-10

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.2.10-6+deb10u10+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1777042487.json"

libcupsimage2

Package

Name: libcupsimage2
Purl: pkg:deb/tuxcare/libcupsimage2?distro=debian-10

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.2.10-6+deb10u10+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1777042487.json"

libcupsimage2-dev

Package

Name: libcupsimage2-dev
Purl: pkg:deb/tuxcare/libcupsimage2-dev?distro=debian-10

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.2.10-6+deb10u10+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1777042487.json"