FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

cups -- security vulnerabilities

Affected packages
cups < 2.4.13

Details

VuXML ID 3aee6703-8ff6-11f0-b8da-589cfc10a551
Discovery 2025-09-11
Entry 2025-09-12
Modified 2025-09-16

OpenPrinting reports:

When the AuthType is set to anything but Basic, if the request contains an Authorization: Basic ... header, the password is not checked.

[source]

An unsafe deserialization and validation of printer attributes, causes null dereference in libcups library.

[source]

References

CVE Name CVE-2025-58060
CVE Name CVE-2025-58364
URL https://github.com/OpenPrinting/cups/security/advisories/GHSA-4c68-qgrh-rmmq
URL https://github.com/OpenPrinting/cups/security/advisories/GHSA-7qx3-r744-6qv4

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.