CVE-2025-64524

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2025-64524
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-64524.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-64524
Aliases
  • GHSA-rq44-2q5p-x3hv
Downstream
Related
Published
2025-11-20T18:05:06.236Z
Modified
2025-11-23T03:10:55.115783Z
Severity
  • 3.3 (Low) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L CVSS Calculator
Summary
CUPS rastertopclx Filter Vulnerable to Heap Buffer Overflow Leading to Potential Arbitrary Code Execution
Details

cups-filters contains backends, filters, and other software required to get the cups printing service working on operating systems other than macos. In versions 2.0.1 and prior, a heap-buffer-overflow vulnerability in the rastertopclx filter causes the program to crash with a segmentation fault when processing maliciously crafted input data. This issue can be exploited to trigger memory corruption, potentially leading to arbitrary code execution. This issue has been patched via commit 956283c.

Database specific 
{
    "cwe_ids": [
        "CWE-122"
    ]
}
References

Affected packages

Git / github.com/openprinting/cups-filters

Affected ranges

Type
GIT
Repo
https://github.com/openprinting/cups-filters
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
956283c74a34ae924266a2a63f8e5f529a1abd06

Affected versions

2.*

2.0.0
2.0.1
2.0b1
2.0b2
2.0b3
2.0rc1
2.0rc2

Other

release-1-0
release-1-0-1
release-1-0-10
release-1-0-11
release-1-0-12
release-1-0-13
release-1-0-14
release-1-0-15
release-1-0-16
release-1-0-17
release-1-0-18
release-1-0-19
release-1-0-2
release-1-0-20
release-1-0-21
release-1-0-22
release-1-0-23
release-1-0-24
release-1-0-25
release-1-0-26
release-1-0-27
release-1-0-28
release-1-0-29
release-1-0-3
release-1-0-30
release-1-0-31
release-1-0-32
release-1-0-33
release-1-0-34
release-1-0-35
release-1-0-36
release-1-0-37
release-1-0-38
release-1-0-39
release-1-0-4
release-1-0-40
release-1-0-41
release-1-0-42
release-1-0-43
release-1-0-44
release-1-0-45
release-1-0-46
release-1-0-47
release-1-0-48
release-1-0-49
release-1-0-5
release-1-0-50
release-1-0-51
release-1-0-52
release-1-0-53
release-1-0-54
release-1-0-55
release-1-0-56
release-1-0-57
release-1-0-58
release-1-0-59
release-1-0-6
release-1-0-60
release-1-0-61
release-1-0-62
release-1-0-63
release-1-0-65
release-1-0-66
release-1-0-67
release-1-0-68
release-1-0-69
release-1-0-7
release-1-0-70
release-1-0-71
release-1-0-72
release-1-0-73
release-1-0-74
release-1-0-75
release-1-0-76
release-1-0-8
release-1-0-9
release-1-0-b1
release-1-1-0
release-1-10-0
release-1-11-0
release-1-11-1
release-1-11-2
release-1-11-3
release-1-11-4
release-1-11-5
release-1-11-6
release-1-12-0
release-1-13-0
release-1-13-1
release-1-13-2
release-1-13-3
release-1-13-4
release-1-13-5
release-1-14-0
release-1-14-1
release-1-15-0
release-1-16-0
release-1-16-1
release-1-16-2
release-1-16-3
release-1-16-4
release-1-17-1
release-1-17-2
release-1-17-3
release-1-17-4
release-1-17-5
release-1-17-6
release-1-17-7
release-1-17-8
release-1-17-9
release-1-18-0
release-1-19-0
release-1-2-0
release-1-20-0
release-1-20-1
release-1-20-2
release-1-20-3
release-1-20-4
release-1-21-0
release-1-21-1
release-1-21-2
release-1-21-3
release-1-21-4
release-1-21-5
release-1-21-6
release-1-22-0
release-1-22-1
release-1-22-2
release-1-22-3
release-1-22-4
release-1-22-5
release-1-22-6
release-1-23-0
release-1-24-0
release-1-25-0
release-1-25-1
release-1-25-10
release-1-25-11
release-1-25-12
release-1-25-13
release-1-25-2
release-1-25-3
release-1-25-4
release-1-25-5
release-1-25-6
release-1-25-7
release-1-25-8
release-1-25-9
release-1-26-0
release-1-26-1
release-1-26-2
release-1-27-0
release-1-27-1
release-1-27-2
release-1-27-3
release-1-27-4
release-1-27-5
release-1-3-0
release-1-4-0
release-1-5-0
release-1-6-0
release-1-7-0
release-1-8-0
release-1-8-1
release-1-8-2
release-1-8-3
release-1-9-0

release-1-17.*

release-1-17.0

v1.*

v1.17.9