CLSA-2026-1779436377

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1779436377.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2026-1779436377

Upstream

CVE-2026-27447

Published

2026-05-22T07:53:04Z

Modified

2026-06-01T00:32:54.399616943Z

Summary

cups: Fix of CVE-2026-27447

Details

CVE-2026-27447: fix authorization bypass in cupsd by replacing case-insensitive username comparisons with byte-exact strcmp against pw->pwname; also include upstream follow-up commit 849fba7d ("Fix unauthenticated print policies", Issue #1557) to restore behavior for CUPSDAUTH_NONE policies with named ACLs

References

https://errata.tuxcare.com/els_os/tuxcare9.6esu/CLSA-2026-1779436377.html

Affected packages

TuxCare:AlmaLinux:9.6

cups

Package

Name: cups
Purl: pkg:rpm/tuxcare/cups?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.3op2-33.el9_6.1.tuxcare.els6

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1779436377.json"

cups-client

Package

Name: cups-client
Purl: pkg:rpm/tuxcare/cups-client?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.3op2-33.el9_6.1.tuxcare.els6

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1779436377.json"

cups-devel

Package

Name: cups-devel
Purl: pkg:rpm/tuxcare/cups-devel?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.3op2-33.el9_6.1.tuxcare.els6

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1779436377.json"

cups-filesystem

Package

Name: cups-filesystem
Purl: pkg:rpm/tuxcare/cups-filesystem?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.3op2-33.el9_6.1.tuxcare.els6

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1779436377.json"

cups-ipptool

Package

Name: cups-ipptool
Purl: pkg:rpm/tuxcare/cups-ipptool?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.3op2-33.el9_6.1.tuxcare.els6

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1779436377.json"

cups-libs

Package

Name: cups-libs
Purl: pkg:rpm/tuxcare/cups-libs?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.3op2-33.el9_6.1.tuxcare.els6

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1779436377.json"

cups-lpd

Package

Name: cups-lpd
Purl: pkg:rpm/tuxcare/cups-lpd?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.3op2-33.el9_6.1.tuxcare.els6

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1779436377.json"

cups-printerapp

Package

Name: cups-printerapp
Purl: pkg:rpm/tuxcare/cups-printerapp?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:2.3.3op2-33.el9_6.1.tuxcare.els6

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1779436377.json"