Description
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.16 and prior, there is a heap-based buffer overflow in the CUPS scheduler when building filter option strings from job attribute. At time of publication, there are no publicly available patches.
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:LExploitability: 3.9 | Impact: 1.4Attack Vector: Network
Complexity: Low
Privileges: None
User Interaction: None
Scope: Unchanged
Confidentiality: None
Integrity: None
Availability: Low
Affected Packages1 packages
🔴Vulnerability Details
2OSVCVE-2026-34979: OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems↗2026-04-03 CVEListOpenPrinting CUPS: Heap overflow in `get_options()`↗2026-04-03 📋Vendor Advisories
3Red Hatcups: OpenPrinting CUPS: Denial of Service via heap-based buffer overflow in job attribute processing↗2026-04-03 MicrosoftOpenPrinting CUPS: Heap overflow in `get_options()`↗2026-04-02 DebianCVE-2026-34979: cups - OpenPrinting CUPS is an open source printing system for Linux and other Unix-lik...↗2026 🕵️Threat Intelligence
1WizCVE-2026-34979 Impact, Exploitability, and Mitigation Steps | Wiz↗