Particle.news
Download on the App Store
3 ARTICLES
·
UPDATED 6 months ago

Critical Linux CUPS Bug Exposes Systems to Remote Hijacking

A newly disclosed vulnerability in the CUPS printing system could allow attackers to execute arbitrary code on Linux machines, but mitigations are available.

  • The vulnerability affects the CUPS printing system, specifically when the cups-browsed service is enabled.
  • The exploit requires an attacker to access UDP port 631 and a victim to initiate a print job.
  • Simone Margaritelli, the researcher who discovered the bug, disclosed it after frustration with the handling by CUPS developers.
  • Mitigation steps include disabling cups-browsed, blocking UDP port 631, and updating CUPS when patches become available.
  • The issue impacts most Linux distributions, some BSDs, Google ChromeOS, and Oracle Solaris, but the real-world impact is considered low due to required mitigations.
Publisher Logo ZDNET Publisher Logo BleepingComputer Publisher Logo The Register
Hero image