cups-2.2.6-68.el8_10
エラータID: AXSA:2026-1240:09
The Common UNIX Printing System (CUPS) provides a portable printing layer for Linux, UNIX, and similar operating systems.
Security Fix(es):
* cups: OpenPrinting CUPS: Shared PostScript queue lets anonymous Print-Job requests reach `lp` code execution over the network (CVE-2026-34980)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2026-34980
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.16 and prior, in a network-exposed cupsd with a shared target queue, an unauthorized client can send a Print-Job to that shared PostScript queue without authentication. The server accepts a page-border value supplied as textWithoutLanguage, preserves an embedded newline through option escaping and reparse, and then reparses the resulting second-line PPD: text as a trusted scheduler control record. A follow-up raw print job can therefore make the server execute an attacker-chosen existing binary such as /usr/bin/vim as lp. At time of publication, there are no publicly available patches.
Update packages.
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.16 and prior, in a network-exposed cupsd with a shared target queue, an unauthorized client can send a Print-Job to that shared PostScript queue without authentication. The server accepts a page-border value supplied as textWithoutLanguage, preserves an embedded newline through option escaping and reparse, and then reparses the resulting second-line PPD: text as a trusted scheduler control record. A follow-up raw print job can therefore make the server execute an attacker-chosen existing binary such as /usr/bin/vim as lp. At time of publication, there are no publicly available patches.
N/A
SRPMS
- cups-2.2.6-68.el8_10.src.rpm
MD5: cff626c6212a83e7481a248a99dea735
SHA-256: 7c6b8379c63669715bb02ef4740c3a32990bb141c07d32611423b8ec31620269
Size: 10.12 MB
Asianux Server 8 for x86_64
- cups-2.2.6-68.el8_10.x86_64.rpm
MD5: 4f4a82d0b7099a4cff812929d45c898b
SHA-256: a3eebfcbc3b08ab996df13d1627918d2d8b5e034d80b1f24f9a50e07887e0c3e
Size: 1.44 MB - cups-client-2.2.6-68.el8_10.x86_64.rpm
MD5: 7d5e3a89e209ab74150abe766b4d7d14
SHA-256: ea1ca0c1619425770022e358c0f8e0c1a4d90522ca57b0f03cdff7d2eec1fbd9
Size: 173.31 kB - cups-devel-2.2.6-68.el8_10.i686.rpm
MD5: c1284cb8d17ce43cd8ee0f36f5eb78e6
SHA-256: 3f86056e53c8c23accf4460a2422665f52e72708e3b8296251d1a48cf67b5eb2
Size: 152.64 kB - cups-devel-2.2.6-68.el8_10.x86_64.rpm
MD5: 0166b894ce363580460a8d497b446fac
SHA-256: 81aca0a5c9d1001f6333a3b2d7458a719778ccf9edf4f9aaddc4b325a23e83f9
Size: 152.66 kB - cups-filesystem-2.2.6-68.el8_10.noarch.rpm
MD5: 7be0c08cdc47aa8f502f3b7c2e6fb39c
SHA-256: f45f85ef255878185f8d818771831ac7681e7645e9bafe2f55ff8e64ec21dc33
Size: 112.98 kB - cups-ipptool-2.2.6-68.el8_10.x86_64.rpm
MD5: 8d38307cdc2b657f6fbfe3da3d6014f1
SHA-256: 2847c67346440e3bdf432f8339fc307226b457c10e562e7e32f2e31330807a96
Size: 5.82 MB - cups-libs-2.2.6-68.el8_10.i686.rpm
MD5: 6d7ac4591575794b948131f55a518a2d
SHA-256: e37d9498cd501cd744fb0877033b41c59e01fab5ed6374dba9fc72a40a19a2bc
Size: 464.04 kB - cups-libs-2.2.6-68.el8_10.x86_64.rpm
MD5: 55feceaf3915fed6111b493b86467ef6
SHA-256: d2d754d2ba48f5c75ab678ae1be99a2493a69d3be26fcadb1ef68da287af46ef
Size: 437.53 kB - cups-lpd-2.2.6-68.el8_10.x86_64.rpm
MD5: 4efb114cbd151f7718ab1644905ebf34
SHA-256: fe67bff8124313763a8dcae8b075542726a703d788a64c84ab285f9adc705021
Size: 128.26 kB