CVE-2026-34979
OpenPrinting CUPS: Heap overflow in `get_options()`
In short
A memory error in CUPS (a printing system) allows attackers to overflow a buffer when processing print job requests, potentially causing the system to crash or behave unexpectedly.
Technical detail
Heap-based buffer overflow in the CUPS scheduler's get_options() function when constructing filter option strings from job attributes. Requires local or network access to submit a malicious print job; impact includes denial of service and potential code execution depending on memory layout.
Summary generated and translated by AI from the official description.
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.16 and prior, there is a heap-based buffer overflow in the CUPS scheduler when building filter option strings from job attribute. At time of publication, there are no publicly available patches.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Affected products
OpenPrinting · cupsWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →