CVE-2024-35235

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-35235

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-35235.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-35235

Aliases

GHSA-vvwp-mv6j-hw6f

Related

Published

2024-06-11T15:16:07Z

Modified

2024-12-05T15:36:39.922657Z

Summary

[none]

Details

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.8 and earlier, when starting the cupsd server with a Listen configuration item pointing to a symbolic link, the cupsd process can be caused to perform an arbitrary chmod of the provided argument, providing world-writable access to the target. Given that cupsd is often running as root, this can result in the change of permission of any user or system files to be world writable. Given the aforementioned Ubuntu AppArmor context, on such systems this vulnerability is limited to those files modifiable by the cupsd process. In that specific case it was found to be possible to turn the configuration of the Listen argument into full control over the cupsd.conf and cups-files.conf configuration files. By later setting the User and Group arguments in cups-files.conf, and printing with a printer configured by PPD with a FoomaticRIPCommandLine argument, arbitrary user and group (not root) command execution could be achieved, which can further be used on Ubuntu systems to achieve full root command execution. Commit ff1f8a623e090dee8a8aadf12a6a4b25efac143d contains a patch for the issue.

References

Affected packages

Alpine:v3.17 / cups

Package

Name: cups
Purl: pkg:apk/alpine/cups?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.4.9-r0

Affected versions

1.*

1.4.1-r0

1.4.2-r0

1.4.2-r1

1.4.2-r2

1.4.3-r0

1.4.3-r1

1.4.3-r2

1.4.3-r3

1.4.4-r0

1.4.4-r1

1.4.5-r0

1.4.6-r0

1.4.7-r0

1.4.8-r0

1.5.0-r0

1.5.0-r1

1.5.0-r2

1.5.2-r0

1.5.2-r1

1.5.2-r2

1.5.2-r3

1.5.3-r0

1.5.4-r0

1.5.4-r1

1.6.1-r0

1.6.1-r1

1.6.2-r0

1.6.2-r1

1.6.3-r0

1.6.4-r0

1.7.0-r0

1.7.0-r1

1.7.1-r0

1.7.2-r0

1.7.3-r0

1.7.3-r1

1.7.4-r0

1.7.5-r0

2.*

2.0.0-r0

2.0.1-r0

2.0.2-r0

2.0.2-r1

2.0.2-r2

2.0.3-r0

2.0.4-r0

2.1.0-r0

2.1.1-r0

2.1.2-r0

2.1.3-r0

2.1.3-r1

2.1.4-r0

2.2.1-r0

2.2.1-r1

2.2.2-r0

2.2.2-r1

2.2.2-r2

2.2.3-r0

2.2.3-r1

2.2.4-r0

2.2.5-r0

2.2.5-r1

2.2.6-r0

2.2.9-r0

2.2.10-r0

2.2.11-r0

2.2.12-r0

2.2.12-r1

2.2.12-r2

2.3.3-r0

2.3.3-r1

2.3.3-r2

2.3.3-r3

2.3.3-r4

2.4.0-r0

2.4.1-r0

2.4.1-r1

2.4.2-r0

2.4.2-r1

2.4.2-r2

2.4.2-r3

Alpine:v3.18 / cups

Package

Name: cups
Purl: pkg:apk/alpine/cups?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.4.9-r0

Affected versions

1.*

1.4.1-r0

1.4.2-r0

1.4.2-r1

1.4.2-r2

1.4.3-r0

1.4.3-r1

1.4.3-r2

1.4.3-r3

1.4.4-r0

1.4.4-r1

1.4.5-r0

1.4.6-r0

1.4.7-r0

1.4.8-r0

1.5.0-r0

1.5.0-r1

1.5.0-r2

1.5.2-r0

1.5.2-r1

1.5.2-r2

1.5.2-r3

1.5.3-r0

1.5.4-r0

1.5.4-r1

1.6.1-r0

1.6.1-r1

1.6.2-r0

1.6.2-r1

1.6.3-r0

1.6.4-r0

1.7.0-r0

1.7.0-r1

1.7.1-r0

1.7.2-r0

1.7.3-r0

1.7.3-r1

1.7.4-r0

1.7.5-r0

2.*

2.0.0-r0

2.0.1-r0

2.0.2-r0

2.0.2-r1

2.0.2-r2

2.0.3-r0

2.0.4-r0

2.1.0-r0

2.1.1-r0

2.1.2-r0

2.1.3-r0

2.1.3-r1

2.1.4-r0

2.2.1-r0

2.2.1-r1

2.2.2-r0

2.2.2-r1

2.2.2-r2

2.2.3-r0

2.2.3-r1

2.2.4-r0

2.2.5-r0

2.2.5-r1

2.2.6-r0

2.2.9-r0

2.2.10-r0

2.2.11-r0

2.2.12-r0

2.2.12-r1

2.2.12-r2

2.3.3-r0

2.3.3-r1

2.3.3-r2

2.3.3-r3

2.3.3-r4

2.4.0-r0

2.4.1-r0

2.4.1-r1

2.4.2-r0

2.4.2-r1

2.4.2-r2

2.4.2-r3

2.4.2-r4

2.4.2-r5

2.4.2-r6

2.4.2-r7

2.4.3-r0

2.4.3-r1

2.4.4-r0

2.4.5-r0

2.4.6-r0

2.4.7-r0

Alpine:v3.19 / cups

Package

Name: cups
Purl: pkg:apk/alpine/cups?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.4.9-r0

Affected versions

1.*

1.4.1-r0

1.4.2-r0

1.4.2-r1

1.4.2-r2

1.4.3-r0

1.4.3-r1

1.4.3-r2

1.4.3-r3

1.4.4-r0

1.4.4-r1

1.4.5-r0

1.4.6-r0

1.4.7-r0

1.4.8-r0

1.5.0-r0

1.5.0-r1

1.5.0-r2

1.5.2-r0

1.5.2-r1

1.5.2-r2

1.5.2-r3

1.5.3-r0

1.5.4-r0

1.5.4-r1

1.6.1-r0

1.6.1-r1

1.6.2-r0

1.6.2-r1

1.6.3-r0

1.6.4-r0

1.7.0-r0

1.7.0-r1

1.7.1-r0

1.7.2-r0

1.7.3-r0

1.7.3-r1

1.7.4-r0

1.7.5-r0

2.*

2.0.0-r0

2.0.1-r0

2.0.2-r0

2.0.2-r1

2.0.2-r2

2.0.3-r0

2.0.4-r0

2.1.0-r0

2.1.1-r0

2.1.2-r0

2.1.3-r0

2.1.3-r1

2.1.4-r0

2.2.1-r0

2.2.1-r1

2.2.2-r0

2.2.2-r1

2.2.2-r2

2.2.3-r0

2.2.3-r1

2.2.4-r0

2.2.5-r0

2.2.5-r1

2.2.6-r0

2.2.9-r0

2.2.10-r0

2.2.11-r0

2.2.12-r0

2.2.12-r1

2.2.12-r2

2.3.3-r0

2.3.3-r1

2.3.3-r2

2.3.3-r3

2.3.3-r4

2.4.0-r0

2.4.1-r0

2.4.1-r1

2.4.2-r0

2.4.2-r1

2.4.2-r2

2.4.2-r3

2.4.2-r4

2.4.2-r5

2.4.2-r6

2.4.2-r7

2.4.3-r0

2.4.3-r1

2.4.4-r0

2.4.5-r0

2.4.6-r0

2.4.7-r0

Alpine:v3.20 / cups

Package

Name: cups
Purl: pkg:apk/alpine/cups?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.4.9-r0

Affected versions

1.*

1.4.1-r0

1.4.2-r0

1.4.2-r1

1.4.2-r2

1.4.3-r0

1.4.3-r1

1.4.3-r2

1.4.3-r3

1.4.4-r0

1.4.4-r1

1.4.5-r0

1.4.6-r0

1.4.7-r0

1.4.8-r0

1.5.0-r0

1.5.0-r1

1.5.0-r2

1.5.2-r0

1.5.2-r1

1.5.2-r2

1.5.2-r3

1.5.3-r0

1.5.4-r0

1.5.4-r1

1.6.1-r0

1.6.1-r1

1.6.2-r0

1.6.2-r1

1.6.3-r0

1.6.4-r0

1.7.0-r0

1.7.0-r1

1.7.1-r0

1.7.2-r0

1.7.3-r0

1.7.3-r1

1.7.4-r0

1.7.5-r0

2.*

2.0.0-r0

2.0.1-r0

2.0.2-r0

2.0.2-r1

2.0.2-r2

2.0.3-r0

2.0.4-r0

2.1.0-r0

2.1.1-r0

2.1.2-r0

2.1.3-r0

2.1.3-r1

2.1.4-r0

2.2.1-r0

2.2.1-r1

2.2.2-r0

2.2.2-r1

2.2.2-r2

2.2.3-r0

2.2.3-r1

2.2.4-r0

2.2.5-r0

2.2.5-r1

2.2.6-r0

2.2.9-r0

2.2.10-r0

2.2.11-r0

2.2.12-r0

2.2.12-r1

2.2.12-r2

2.3.3-r0

2.3.3-r1

2.3.3-r2

2.3.3-r3

2.3.3-r4

2.4.0-r0

2.4.1-r0

2.4.1-r1

2.4.2-r0

2.4.2-r1

2.4.2-r2

2.4.2-r3

2.4.2-r4

2.4.2-r5

2.4.2-r6

2.4.2-r7

2.4.3-r0

2.4.3-r1

2.4.4-r0

2.4.5-r0

2.4.6-r0

2.4.7-r0

2.4.7-r1

2.4.7-r2

2.4.7-r3

2.4.7-r4

2.4.8-r0

Alpine:v3.21 / cups

Package

Name: cups
Purl: pkg:apk/alpine/cups?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.4.9-r0

Affected versions

1.*

1.4.1-r0

1.4.2-r0

1.4.2-r1

1.4.2-r2

1.4.3-r0

1.4.3-r1

1.4.3-r2

1.4.3-r3

1.4.4-r0

1.4.4-r1

1.4.5-r0

1.4.6-r0

1.4.7-r0

1.4.8-r0

1.5.0-r0

1.5.0-r1

1.5.0-r2

1.5.2-r0

1.5.2-r1

1.5.2-r2

1.5.2-r3

1.5.3-r0

1.5.4-r0

1.5.4-r1

1.6.1-r0

1.6.1-r1

1.6.2-r0

1.6.2-r1

1.6.3-r0

1.6.4-r0

1.7.0-r0

1.7.0-r1

1.7.1-r0

1.7.2-r0

1.7.3-r0

1.7.3-r1

1.7.4-r0

1.7.5-r0

2.*

2.0.0-r0

2.0.1-r0

2.0.2-r0

2.0.2-r1

2.0.2-r2

2.0.3-r0

2.0.4-r0

2.1.0-r0

2.1.1-r0

2.1.2-r0

2.1.3-r0

2.1.3-r1

2.1.4-r0

2.2.1-r0

2.2.1-r1

2.2.2-r0

2.2.2-r1

2.2.2-r2

2.2.3-r0

2.2.3-r1

2.2.4-r0

2.2.5-r0

2.2.5-r1

2.2.6-r0

2.2.9-r0

2.2.10-r0

2.2.11-r0

2.2.12-r0

2.2.12-r1

2.2.12-r2

2.3.3-r0

2.3.3-r1

2.3.3-r2

2.3.3-r3

2.3.3-r4

2.4.0-r0

2.4.1-r0

2.4.1-r1

2.4.2-r0

2.4.2-r1

2.4.2-r2

2.4.2-r3

2.4.2-r4

2.4.2-r5

2.4.2-r6

2.4.2-r7

2.4.3-r0

2.4.3-r1

2.4.4-r0

2.4.5-r0

2.4.6-r0

2.4.7-r0

2.4.7-r1

2.4.7-r2

2.4.7-r3

2.4.7-r4

2.4.8-r0

Debian:11 / cups

Package

Name: cups
Purl: pkg:deb/debian/cups?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.3.3op2-3+deb11u7

Affected versions

2.*

2.3.3op2-3+deb11u1

2.3.3op2-3+deb11u2

2.3.3op2-3+deb11u3

2.3.3op2-3+deb11u4

2.3.3op2-3+deb11u5

2.3.3op2-3+deb11u6

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / cups

Package

Name: cups
Purl: pkg:deb/debian/cups?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.4.2-3+deb12u6

Affected versions

2.*

2.4.2-3

2.4.2-3+deb12u1

2.4.2-3+deb12u2

2.4.2-3+deb12u3

2.4.2-3+deb12u4

2.4.2-3+deb12u5

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / cups

Package

Name: cups
Purl: pkg:deb/debian/cups?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.4.7-2

Affected versions

2.*

2.4.2-3

2.4.2-4

2.4.2-5

2.4.2-6

2.4.7-1

2.4.7-1.1

2.4.7-1.2

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Git / github.com/openprinting/cups

Affected ranges

Type: GIT
Repo: https://github.com/openprinting/cups
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

ff1f8a623e090dee8a8aadf12a6a4b25efac143d

Affected versions

v2.*

v2.2.0

v2.2.1

v2.2.2

v2.2.3

v2.2.4

v2.2.5

v2.2.6

v2.2b1

v2.2b2

v2.2rc1

v2.3.0

v2.3.1

v2.3.3

v2.3.3op1

v2.3.3op2

v2.3b1

v2.3b2

v2.3b3

v2.3b4

v2.3b5

v2.3b6

v2.3b7

v2.3b8

v2.3rc1

v2.4.0

v2.4.1

v2.4.2

v2.4.3

v2.4b1

v2.4rc1