CVE-2026-39314Integer Underflow (Wrap or Wraparound) in Cups

CWE-191Integer Underflow (Wrap or Wraparound)9 documents8 sources
Severity
4.0MEDIUMNVD
EPSS
0.0%
top 95.83%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Openprinting Cups
Timeline
PublishedApr 7
Latest updateApr 8

Description

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.16 and prior, an integer underflow vulnerability in _ppdCreateFromIPP() (cups/ppd-cache.c) allows any unprivileged local user to crash the cupsd root process by supplying a negative job-password-supported IPP attribute. The bounds check only caps the upper bound, so a negative value passes validation, is cast to size_t (wrapping to ~2^64), and is used as the length argument to mem

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:LExploitability: 2.5 | Impact: 1.4

Affected Packages1 packages

CVEListV5openprinting/cups2.4.16

🔴Vulnerability Details

2
CVEList
CUPS has an integer underflow in `_ppdCreateFromIPP` causes root cupsd crash via negative `job-password-supported`2026-04-07
OSV
CVE-2026-39314: OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems2026-04-07

📋Vendor Advisories

3
Red Hat
cups: CUPS: Denial of Service via integer underflow in IPP attribute handling2026-04-07
Microsoft
CUPS has an integer underflow in `_ppdCreateFromIPP` causes root cupsd crash via negative `job-password-supported`2026-04-02
Debian
CVE-2026-39314: cups - OpenPrinting CUPS is an open source printing system for Linux and other Unix-lik...2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-39314 Impact, Exploitability, and Mitigation Steps | Wiz

💬Community

2
Bugzilla
CVE-2026-39314 cups: CUPS: Denial of Service via integer underflow in IPP attribute handling [fedora-all]2026-04-08
Bugzilla
CVE-2026-39314 cups: CUPS: Denial of Service via integer underflow in IPP attribute handling2026-04-07
CVE-2026-39314 — Integer Underflow (Wrap or Wraparound) | cvebase