CVE-2025-58436
published 2025-11-29CVE-2025-58436: OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a client that connects to cupsd…
medium5.5CVSS 3.1
AVLACLPRNUIRSUCNINAH
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a client that connects to cupsd but sends slow messages, e.g. only one byte per second, delays cupsd as a whole, such that it becomes unusable by other clients. This issue has been patched in version 2.4.15.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | cups | >= 0 < 2.4.15-1 | 2.4.15-1 |
| apple | cups | >= 0 < 2.4.1op1-1ubuntu4.16 | 2.4.1op1-1ubuntu4.16 |
| apple | cups | >= 0 < 2.4.7-1.2ubuntu7.9 | 2.4.7-1.2ubuntu7.9 |
| apple | cups | >= 0 < 2.4.12-0ubuntu3.5 | 2.4.12-0ubuntu3.5 |
| apple | cups | >= 0 < 2.1.3-4ubuntu0.11+esm12 | 2.1.3-4ubuntu0.11+esm12 |
| apple | cups | >= 0 < 2.2.7-1ubuntu2.10+esm10 | 2.2.7-1ubuntu2.10+esm10 |
| apple | cups | >= 0 < 2.3.1-9ubuntu1.9+esm4 | 2.3.1-9ubuntu1.9+esm4 |
| debian | cups | < cups 2.4.15-1 (forky) | cups 2.4.15-1 (forky) |
| msrc | azl3_cups_2.4.13-1_on_azure_linux_3.0 | — | — |
| msrc | azl3_cups_2.4.16-1_on_azure_linux_3.0 | — | — |
| msrc | cbl2_cups_2.3.3op2-10_on_cbl_mariner_2.0 | — | — |
| msrc | cbl2_cups_2.3.3op2-11_on_cbl_mariner_2.0 | — | — |
| openprinting | cups | < 2.4.15 | 2.4.15 |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
osv5.5MEDIUM