CNNVD-202511-1389 Information
CNNVD ID
CNNVD-202511-1389
Related CVE
- CNNVD Published: 2025-11-12
Description (Chinese)
OpenPrinting libcupsfilters是OpenPrinting开源的一个打印系统过滤器。 OpenPrinting libcupsfilters存在缓冲区错误漏洞,该漏洞源于imagetoraster过滤器处理TIFF图像时存在越界读写,可能导致内存损坏。
Description (English)
OpenPrining libcupsfilters are a print system filter for OpenPrinting open sources. OpenPrining libcupsfilters contains an error loophole in the buffer zone, which stems from the existence of cross-border reading and writing in the processing of TIFF images by the imagestoraster filter, which may cause memory damage.
Hazard Level
Critical
Vulnerability Type
缓冲区错误
Affected Vendor
OpenPrinting
Published
2025-11-12
Last Modified
2026-02-24
References
https://github.com/OpenPrinting/libcupsfilters/commit/b69dfacec7f176281782e2f7ac44f04bf9633cfa http://www.openwall.com/lists/oss-security/2025/11/12/1 https://github.com/OpenPrinting/cups-filters/blob/3c58463e341b12c9d30d7d3807d2bac1bc595a78/filter/imagetoraster.c#L613 https://github.com/OpenPrinting/libcupsfilters/blob/33421982e10f6a14bc0bab03b80c9cf4660e8d7d/cupsfilters/image-tiff.c#L32 https://github.com/OpenPrinting/libcupsfilters/security/advisories/GHSA-jpxg-qc2c-hgv4 https://github.com/OpenPrinting/cups-filters/blob/3c58463e341b12c9d30d7d3807d2bac1bc595a78/cupsfilters/image-tiff.c#L34 https://access.redhat.com/security/cve/cve-2025-57812
Patch
https://github.com/OpenPrinting/libcupsfilters/releases
Share on: