Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-58060 (GCVE-0-2025-58060)
Vulnerability from cvelistv5 – Published: 2025-09-11 17:06 – Updated: 2025-11-04 21:13
VLAI
EPSS
Title
cups has Authentication bypass with AuthType Negotiate
Summary
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.12 and earlier, when the `AuthType` is set to anything but `Basic`, if the request contains an `Authorization: Basic ...` header, the password is not checked. This results in authentication bypass. Any configuration that allows an `AuthType` that is not `Basic` is affected. Version 2.4.13 fixes the issue.
Severity
CWE
- CWE-287 - Improper Authentication
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://github.com/OpenPrinting/cups/security/adv… | x_refsource_CONFIRM |
| https://github.com/OpenPrinting/cups/commit/595d6… | x_refsource_MISC |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| OpenPrinting | cups |
Affected:
< 2.4.13
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-58060",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-09-11T17:33:32.502303Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-09-11T17:35:59.645Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2025-11-04T21:13:22.294Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"url": "https://lists.debian.org/debian-lts-announce/2025/09/msg00013.html"
},
{
"url": "http://www.openwall.com/lists/oss-security/2025/09/11/1"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "cups",
"vendor": "OpenPrinting",
"versions": [
{
"status": "affected",
"version": "\u003c 2.4.13"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.12 and earlier, when the `AuthType` is set to anything but `Basic`, if the request contains an `Authorization: Basic ...` header, the password is not checked. This results in authentication bypass. Any configuration that allows an `AuthType` that is not `Basic` is affected. Version 2.4.13 fixes the issue."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-287",
"description": "CWE-287: Improper Authentication",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-09-11T17:25:02.915Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/OpenPrinting/cups/security/advisories/GHSA-4c68-qgrh-rmmq",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/OpenPrinting/cups/security/advisories/GHSA-4c68-qgrh-rmmq"
},
{
"name": "https://github.com/OpenPrinting/cups/commit/595d691075b1d396d2edfaa0a8fd0873a0a1f221",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/OpenPrinting/cups/commit/595d691075b1d396d2edfaa0a8fd0873a0a1f221"
}
],
"source": {
"advisory": "GHSA-4c68-qgrh-rmmq",
"discovery": "UNKNOWN"
},
"title": "cups has Authentication bypass with AuthType Negotiate"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2025-58060",
"datePublished": "2025-09-11T17:06:32.899Z",
"dateReserved": "2025-08-22T14:30:32.222Z",
"dateUpdated": "2025-11-04T21:13:22.294Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2025-58060",
"date": "2026-05-27",
"epss": "0.00053",
"percentile": "0.16561"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2025-58060\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2025-09-11T18:15:34.787\",\"lastModified\":\"2025-11-04T22:16:32.160\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.12 and earlier, when the `AuthType` is set to anything but `Basic`, if the request contains an `Authorization: Basic ...` header, the password is not checked. This results in authentication bypass. Any configuration that allows an `AuthType` that is not `Basic` is affected. Version 2.4.13 fixes the issue.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H\",\"baseScore\":8.0,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.5,\"impactScore\":5.5}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-287\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openprinting:cups:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.4.13\",\"matchCriteriaId\":\"9352DF89-76A8-4760-9846-45BC66C471AE\"}]}]}],\"references\":[{\"url\":\"https://github.com/OpenPrinting/cups/commit/595d691075b1d396d2edfaa0a8fd0873a0a1f221\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/OpenPrinting/cups/security/advisories/GHSA-4c68-qgrh-rmmq\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Exploit\",\"Vendor Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2025/09/11/1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2025/09/msg00013.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://lists.debian.org/debian-lts-announce/2025/09/msg00013.html\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2025/09/11/1\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2025-11-04T21:13:22.294Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-58060\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"poc\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-09-11T17:33:32.502303Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-09-11T17:35:53.103Z\"}}], \"cna\": {\"title\": \"cups has Authentication bypass with AuthType Negotiate\", \"source\": {\"advisory\": \"GHSA-4c68-qgrh-rmmq\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 8, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"LOW\"}}], \"affected\": [{\"vendor\": \"OpenPrinting\", \"product\": \"cups\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003c 2.4.13\"}]}], \"references\": [{\"url\": \"https://github.com/OpenPrinting/cups/security/advisories/GHSA-4c68-qgrh-rmmq\", \"name\": \"https://github.com/OpenPrinting/cups/security/advisories/GHSA-4c68-qgrh-rmmq\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/OpenPrinting/cups/commit/595d691075b1d396d2edfaa0a8fd0873a0a1f221\", \"name\": \"https://github.com/OpenPrinting/cups/commit/595d691075b1d396d2edfaa0a8fd0873a0a1f221\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.12 and earlier, when the `AuthType` is set to anything but `Basic`, if the request contains an `Authorization: Basic ...` header, the password is not checked. This results in authentication bypass. Any configuration that allows an `AuthType` that is not `Basic` is affected. Version 2.4.13 fixes the issue.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-287\", \"description\": \"CWE-287: Improper Authentication\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2025-09-11T17:25:02.915Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-58060\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-11-04T21:13:22.294Z\", \"dateReserved\": \"2025-08-22T14:30:32.222Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2025-09-11T17:06:32.899Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
SUSE-SU-2026:20535-1
Vulnerability from csaf_suse - Published: 2026-03-02 14:17 - Updated: 2026-03-02 14:17Summary
Security update for cups
Severity
Important
Notes
Title of the patch: Security update for cups
Description of the patch: This update for cups fixes the following issues:
Update to version 2.4.16.
Security issues fixed:
- CVE-2025-58436: single client sending slow messages to cupsd can delay the application and make it unusable for other
clients (bsc#1244057).
- CVE-2025-58060: authentication bypass with AuthType negotiate (bsc#1249049).
- CVE-2025-58364: unsafe deserialization and validation of printer attributes can lead to null dereference
(bsc#1249128).
- CVE-2025-61915: local denial-of-service via cupsd.conf update and related issues (bsc#1253783).
Other updates and bugfixes:
- Version upgrade to 2.4.16:
* 'cupsUTF8ToCharset' didn't validate 2-byte UTF-8 sequences,
potentially reading past the end of the source string
(Issue #1438)
* The web interface did not support domain usernames fully
(Issue #1441)
* Fixed an infinite loop issue in the GTK+ print dialog
(Issue #1439 bsc#1254353)
* Fixed stopping scheduler on unknown directive in
configuration (Issue #1443)
- Version upgrade to 2.4.15:
* Fixed potential crash in 'cups-driverd' when there are
duplicate PPDs (Issue #1355)
* Fixed error recovery when scanning for PPDs
in 'cups-driverd' (Issue #1416)
- Fix packages for Immutable Mode - cups (jsc#PED-14775,jsc#PED-14688)
- Version upgrade to 2.4.14.
- Version upgrade to 2.4.13:
* Added 'print-as-raster' printer and job attributes
for forcing rasterization (Issue #1282)
* Updated documentation (Issue #1086)
* Updated IPP backend to try a sanitized user name if the
printer/server does not like the value (Issue #1145)
* Updated the scheduler to send the "printer-added"
or "printer-modified" events whenever an IPP Everywhere PPD
is installed (Issue #1244)
* Updated the scheduler to send the "printer-modified" event
whenever the system default printer is changed (Issue #1246)
* Fixed a memory leak in 'httpClose' (Issue #1223)
* Fixed missing commas in 'ippCreateRequestedArray'
(Issue #1234)
* Fixed subscription issues in the scheduler and D-Bus notifier
(Issue #1235)
* Fixed media-default reporting for custom sizes (Issue #1238)
* Fixed support for IPP/PPD options with periods or underscores
(Issue #1249)
* Fixed parsing of real numbers in PPD compiler source files
(Issue #1263)
* Fixed scheduler freezing with zombie clients (Issue #1264)
* Fixed support for the server name in the ErrorLog filename
(Issue #1277)
* Fixed job cleanup after daemon restart (Issue #1315)
* Fixed handling of buggy DYMO USB printer serial numbers
(Issue #1338)
* Fixed unreachable block in IPP backend (Issue #1351)
* Fixed memory leak in _cupsConvertOptions (Issue #1354)
- Version upgrade to 2.4.12:
* GnuTLS follows system crypto policies now (Issue #1105)
* Added `NoSystem` SSLOptions value (Issue #1130)
* Now we raise alert for certificate issues (Issue #1194)
* Added Kyocera USB quirk (Issue #1198)
* The scheduler now logs a job's debugging history
if the backend fails (Issue #1205)
* Fixed a potential timing issue with `cupsEnumDests`
(Issue #1084)
* Fixed a potential "lost PPD" condition in the scheduler
(Issue #1109)
* Fixed a compressed file error handling bug (Issue #1070)
* Fixed a bug in the make-and-model whitespace trimming
code (Issue #1096)
* Fixed a removal of IPP Everywhere permanent queue
if installation failed (Issue #1102)
* Fixed `ServerToken None` in scheduler (Issue #1111)
* Fixed invalid IPP keyword values created from PPD
option names (Issue #1118)
* Fixed handling of "media" and "PageSize" in the same
print request (Issue #1125)
* Fixed client raster printing from macOS (Issue #1143)
* Fixed the default User-Agent string.
* Fixed a recursion issue in `ippReadIO`.
* Fixed handling incorrect radix in `scan_ps()` (Issue #1188)
* Fixed validation of dateTime values with time zones
more than UTC+11 (Issue #1201)
* Fixed attributes returned by the Create-Xxx-Subscriptions
requests (Issue #1204)
* Fixed `ippDateToTime` when using a non GMT/UTC timezone
(Issue #1208)
* Fixed `job-completed` event notifications for jobs that are
cancelled before started (Issue #1209)
* Fixed DNS-SD discovery with `ippfind` (Issue #1211)
Patchnames: SUSE-SLE-Micro-6.1-419
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.9 (Medium)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6 (Medium)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
21 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for cups",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for cups fixes the following issues:\n\nUpdate to version 2.4.16.\n\nSecurity issues fixed:\n\n- CVE-2025-58436: single client sending slow messages to cupsd can delay the application and make it unusable for other\n clients (bsc#1244057).\n- CVE-2025-58060: authentication bypass with AuthType negotiate (bsc#1249049).\n- CVE-2025-58364: unsafe deserialization and validation of printer attributes can lead to null dereference\n (bsc#1249128).\n- CVE-2025-61915: local denial-of-service via cupsd.conf update and related issues (bsc#1253783).\n\nOther updates and bugfixes:\n\n- Version upgrade to 2.4.16:\n\n * \u0027cupsUTF8ToCharset\u0027 didn\u0027t validate 2-byte UTF-8 sequences,\n potentially reading past the end of the source string\n (Issue #1438)\n * The web interface did not support domain usernames fully\n (Issue #1441)\n * Fixed an infinite loop issue in the GTK+ print dialog\n (Issue #1439 bsc#1254353)\n * Fixed stopping scheduler on unknown directive in\n configuration (Issue #1443)\n \n- Version upgrade to 2.4.15:\n\n * Fixed potential crash in \u0027cups-driverd\u0027 when there are\n duplicate PPDs (Issue #1355)\n * Fixed error recovery when scanning for PPDs\n in \u0027cups-driverd\u0027 (Issue #1416)\n \n- Fix packages for Immutable Mode - cups (jsc#PED-14775,jsc#PED-14688)\n\n- Version upgrade to 2.4.14.\n \n- Version upgrade to 2.4.13:\n\n * Added \u0027print-as-raster\u0027 printer and job attributes\n for forcing rasterization (Issue #1282)\n * Updated documentation (Issue #1086)\n * Updated IPP backend to try a sanitized user name if the\n printer/server does not like the value (Issue #1145)\n * Updated the scheduler to send the \"printer-added\"\n or \"printer-modified\" events whenever an IPP Everywhere PPD\n is installed (Issue #1244)\n * Updated the scheduler to send the \"printer-modified\" event\n whenever the system default printer is changed (Issue #1246)\n * Fixed a memory leak in \u0027httpClose\u0027 (Issue #1223)\n * Fixed missing commas in \u0027ippCreateRequestedArray\u0027\n (Issue #1234)\n * Fixed subscription issues in the scheduler and D-Bus notifier\n (Issue #1235)\n * Fixed media-default reporting for custom sizes (Issue #1238)\n * Fixed support for IPP/PPD options with periods or underscores\n (Issue #1249)\n * Fixed parsing of real numbers in PPD compiler source files\n (Issue #1263)\n * Fixed scheduler freezing with zombie clients (Issue #1264)\n * Fixed support for the server name in the ErrorLog filename\n (Issue #1277)\n * Fixed job cleanup after daemon restart (Issue #1315)\n * Fixed handling of buggy DYMO USB printer serial numbers\n (Issue #1338)\n * Fixed unreachable block in IPP backend (Issue #1351)\n * Fixed memory leak in _cupsConvertOptions (Issue #1354)\n\n- Version upgrade to 2.4.12:\n \n * GnuTLS follows system crypto policies now (Issue #1105)\n * Added `NoSystem` SSLOptions value (Issue #1130)\n * Now we raise alert for certificate issues (Issue #1194)\n * Added Kyocera USB quirk (Issue #1198)\n * The scheduler now logs a job\u0027s debugging history\n if the backend fails (Issue #1205)\n * Fixed a potential timing issue with `cupsEnumDests`\n (Issue #1084)\n * Fixed a potential \"lost PPD\" condition in the scheduler\n (Issue #1109)\n * Fixed a compressed file error handling bug (Issue #1070)\n * Fixed a bug in the make-and-model whitespace trimming\n code (Issue #1096)\n * Fixed a removal of IPP Everywhere permanent queue\n if installation failed (Issue #1102)\n * Fixed `ServerToken None` in scheduler (Issue #1111)\n * Fixed invalid IPP keyword values created from PPD\n option names (Issue #1118)\n * Fixed handling of \"media\" and \"PageSize\" in the same\n print request (Issue #1125)\n * Fixed client raster printing from macOS (Issue #1143)\n * Fixed the default User-Agent string.\n * Fixed a recursion issue in `ippReadIO`.\n * Fixed handling incorrect radix in `scan_ps()` (Issue #1188)\n * Fixed validation of dateTime values with time zones\n more than UTC+11 (Issue #1201)\n * Fixed attributes returned by the Create-Xxx-Subscriptions\n requests (Issue #1204)\n * Fixed `ippDateToTime` when using a non GMT/UTC timezone\n (Issue #1208)\n * Fixed `job-completed` event notifications for jobs that are\n cancelled before started (Issue #1209)\n * Fixed DNS-SD discovery with `ippfind` (Issue #1211) \n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.1-419",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_20535-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:20535-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620535-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:20535-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024560.html"
},
{
"category": "self",
"summary": "SUSE Bug 1244057",
"url": "https://bugzilla.suse.com/1244057"
},
{
"category": "self",
"summary": "SUSE Bug 1249049",
"url": "https://bugzilla.suse.com/1249049"
},
{
"category": "self",
"summary": "SUSE Bug 1249128",
"url": "https://bugzilla.suse.com/1249128"
},
{
"category": "self",
"summary": "SUSE Bug 1253783",
"url": "https://bugzilla.suse.com/1253783"
},
{
"category": "self",
"summary": "SUSE Bug 1254353",
"url": "https://bugzilla.suse.com/1254353"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-58060 page",
"url": "https://www.suse.com/security/cve/CVE-2025-58060/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-58364 page",
"url": "https://www.suse.com/security/cve/CVE-2025-58364/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-58436 page",
"url": "https://www.suse.com/security/cve/CVE-2025-58436/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-61915 page",
"url": "https://www.suse.com/security/cve/CVE-2025-61915/"
}
],
"title": "Security update for cups",
"tracking": {
"current_release_date": "2026-03-02T14:17:19Z",
"generator": {
"date": "2026-03-02T14:17:19Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:20535-1",
"initial_release_date": "2026-03-02T14:17:19Z",
"revision_history": [
{
"date": "2026-03-02T14:17:19Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cups-config-2.4.16-slfo.1.1_1.1.aarch64",
"product": {
"name": "cups-config-2.4.16-slfo.1.1_1.1.aarch64",
"product_id": "cups-config-2.4.16-slfo.1.1_1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libcups2-2.4.16-slfo.1.1_1.1.aarch64",
"product": {
"name": "libcups2-2.4.16-slfo.1.1_1.1.aarch64",
"product_id": "libcups2-2.4.16-slfo.1.1_1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "cups-config-2.4.16-slfo.1.1_1.1.ppc64le",
"product": {
"name": "cups-config-2.4.16-slfo.1.1_1.1.ppc64le",
"product_id": "cups-config-2.4.16-slfo.1.1_1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libcups2-2.4.16-slfo.1.1_1.1.ppc64le",
"product": {
"name": "libcups2-2.4.16-slfo.1.1_1.1.ppc64le",
"product_id": "libcups2-2.4.16-slfo.1.1_1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cups-config-2.4.16-slfo.1.1_1.1.s390x",
"product": {
"name": "cups-config-2.4.16-slfo.1.1_1.1.s390x",
"product_id": "cups-config-2.4.16-slfo.1.1_1.1.s390x"
}
},
{
"category": "product_version",
"name": "libcups2-2.4.16-slfo.1.1_1.1.s390x",
"product": {
"name": "libcups2-2.4.16-slfo.1.1_1.1.s390x",
"product_id": "libcups2-2.4.16-slfo.1.1_1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cups-config-2.4.16-slfo.1.1_1.1.x86_64",
"product": {
"name": "cups-config-2.4.16-slfo.1.1_1.1.x86_64",
"product_id": "cups-config-2.4.16-slfo.1.1_1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libcups2-2.4.16-slfo.1.1_1.1.x86_64",
"product": {
"name": "libcups2-2.4.16-slfo.1.1_1.1.x86_64",
"product_id": "libcups2-2.4.16-slfo.1.1_1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.1",
"product": {
"name": "SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-config-2.4.16-slfo.1.1_1.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.aarch64"
},
"product_reference": "cups-config-2.4.16-slfo.1.1_1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-config-2.4.16-slfo.1.1_1.1.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.ppc64le"
},
"product_reference": "cups-config-2.4.16-slfo.1.1_1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-config-2.4.16-slfo.1.1_1.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.s390x"
},
"product_reference": "cups-config-2.4.16-slfo.1.1_1.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cups-config-2.4.16-slfo.1.1_1.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.x86_64"
},
"product_reference": "cups-config-2.4.16-slfo.1.1_1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcups2-2.4.16-slfo.1.1_1.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.aarch64"
},
"product_reference": "libcups2-2.4.16-slfo.1.1_1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcups2-2.4.16-slfo.1.1_1.1.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.ppc64le"
},
"product_reference": "libcups2-2.4.16-slfo.1.1_1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcups2-2.4.16-slfo.1.1_1.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.s390x"
},
"product_reference": "libcups2-2.4.16-slfo.1.1_1.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcups2-2.4.16-slfo.1.1_1.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.x86_64"
},
"product_reference": "libcups2-2.4.16-slfo.1.1_1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-58060",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-58060"
}
],
"notes": [
{
"category": "general",
"text": "OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.12 and earlier, when the `AuthType` is set to anything but `Basic`, if the request contains an `Authorization: Basic ...` header, the password is not checked. This results in authentication bypass. Any configuration that allows an `AuthType` that is not `Basic` is affected. Version 2.4.13 fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-58060",
"url": "https://www.suse.com/security/cve/CVE-2025-58060"
},
{
"category": "external",
"summary": "SUSE Bug 1249049 for CVE-2025-58060",
"url": "https://bugzilla.suse.com/1249049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-02T14:17:19Z",
"details": "important"
}
],
"title": "CVE-2025-58060"
},
{
"cve": "CVE-2025-58364",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-58364"
}
],
"notes": [
{
"category": "general",
"text": "OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.12 and earlier, an unsafe deserialization and validation of printer attributes causes null dereference in the libcups library. This is a remote DoS vulnerability available in local subnet in default configurations. It can cause the cups \u0026 cups-browsed to crash, on all the machines in local network who are listening for printers (so by default for all regular linux machines). On systems where the vulnerability CVE-2024-47176 (cups-filters 1.x/cups-browsed 2.x vulnerability) was not fixed, and the firewall on the machine does not reject incoming communication to IPP port, and the machine is set to be available to public internet, attack vector \"Network\" is possible. The current versions of CUPS and cups-browsed projects have the attack vector \"Adjacent\" in their default configurations. Version 2.4.13 contains a patch for CVE-2025-58364.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-58364",
"url": "https://www.suse.com/security/cve/CVE-2025-58364"
},
{
"category": "external",
"summary": "SUSE Bug 1249128 for CVE-2025-58364",
"url": "https://bugzilla.suse.com/1249128"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-02T14:17:19Z",
"details": "moderate"
}
],
"title": "CVE-2025-58364"
},
{
"cve": "CVE-2025-58436",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-58436"
}
],
"notes": [
{
"category": "general",
"text": "OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a client that connects to cupsd but sends slow messages, e.g. only one byte per second, delays cupsd as a whole, such that it becomes unusable by other clients. This issue has been patched in version 2.4.15.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-58436",
"url": "https://www.suse.com/security/cve/CVE-2025-58436"
},
{
"category": "external",
"summary": "SUSE Bug 1244057 for CVE-2025-58436",
"url": "https://bugzilla.suse.com/1244057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-02T14:17:19Z",
"details": "moderate"
}
],
"title": "CVE-2025-58436"
},
{
"cve": "CVE-2025-61915",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-61915"
}
],
"notes": [
{
"category": "general",
"text": "OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a user in the lpadmin group can use the cups web ui to change the config and insert a malicious line. Then the cupsd process which runs as root will parse the new config and cause an out-of-bound write. This issue has been patched in version 2.4.15.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-61915",
"url": "https://www.suse.com/security/cve/CVE-2025-61915"
},
{
"category": "external",
"summary": "SUSE Bug 1253783 for CVE-2025-61915",
"url": "https://bugzilla.suse.com/1253783"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:cups-config-2.4.16-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:libcups2-2.4.16-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-02T14:17:19Z",
"details": "moderate"
}
],
"title": "CVE-2025-61915"
}
]
}
WID-SEC-W-2025-2039
Vulnerability from csaf_certbund - Published: 2025-09-11 22:00 - Updated: 2026-03-04 23:00Summary
CUPS: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: CUPS (Common Unix Printing System) ist ein Printspooler, der es lokalen und entfernten Benutzern ermöglicht, Druckfunktionen über das Internet Printing Protocol (IPP) zu nutzen.
Angriff: Ein Angreifer kann mehrere Schwachstellen in CUPS ausnutzen, um Sicherheitsvorkehrungen zu umgehen und um einen Denial of Service Zustand herbeizuführen.
Betroffene Betriebssysteme: - Linux
- UNIX
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Dell NetWorker vProxy <19.14
Dell / NetWorker
|
vProxy <19.14 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Dell Avamar
Dell
|
cpe:/a:dell:avamar:-
|
— | |
|
IBM App Connect Enterprise <12.16.0
IBM / App Connect Enterprise
|
<12.16.0 | ||
|
IBM App Connect Enterprise <12.0.16
IBM / App Connect Enterprise
|
<12.0.16 | ||
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
IGEL OS
IGEL
|
cpe:/o:igel:os:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source CUPS <2.4.13
Open Source / CUPS
|
<2.4.13 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Dell NetWorker Virtual Edition
Dell / NetWorker
|
cpe:/a:dell:networker:virtual_edition
|
Virtual Edition |
Affected products
Known affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Dell NetWorker vProxy <19.14
Dell / NetWorker
|
vProxy <19.14 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Dell Avamar
Dell
|
cpe:/a:dell:avamar:-
|
— | |
|
IBM App Connect Enterprise <12.16.0
IBM / App Connect Enterprise
|
<12.16.0 | ||
|
IBM App Connect Enterprise <12.0.16
IBM / App Connect Enterprise
|
<12.0.16 | ||
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
IGEL OS
IGEL
|
cpe:/o:igel:os:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Open Source CUPS <2.4.13
Open Source / CUPS
|
<2.4.13 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Dell NetWorker Virtual Edition
Dell / NetWorker
|
cpe:/a:dell:networker:virtual_edition
|
Virtual Edition |
References
43 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "CUPS (Common Unix Printing System) ist ein Printspooler, der es lokalen und entfernten Benutzern erm\u00f6glicht, Druckfunktionen \u00fcber das Internet Printing Protocol (IPP) zu nutzen.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen in CUPS ausnutzen, um Sicherheitsvorkehrungen zu umgehen und um einen Denial of Service Zustand herbeizuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- UNIX",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-2039 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-2039.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-2039 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2039"
},
{
"category": "external",
"summary": "GitHub Security Advisory GHSA-4c68-qgrh-rmmq vom 2025-09-11",
"url": "https://github.com/OpenPrinting/cups/security/advisories/GHSA-4c68-qgrh-rmmq"
},
{
"category": "external",
"summary": "GitHub Security Advisory GHSA-7qx3-r744-6qv4 vom 2025-09-11",
"url": "https://github.com/OpenPrinting/cups/security/advisories/GHSA-7qx3-r744-6qv4"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-5998 vom 2025-09-11",
"url": "https://lists.debian.org/debian-security-announce/2025/msg00162.html"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-4298 vom 2025-09-12",
"url": "https://lists.debian.org/debian-lts-announce/2025/09/msg00013.html"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2025-EF0AD78558 vom 2025-09-11",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2025-ef0ad78558"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2025-A83AD46CA7 vom 2025-09-11",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2025-a83ad46ca7"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:15700 vom 2025-09-11",
"url": "https://access.redhat.com/errata/RHSA-2025:15700"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:15701 vom 2025-09-11",
"url": "https://access.redhat.com/errata/RHSA-2025:15701"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:15702 vom 2025-09-11",
"url": "https://access.redhat.com/errata/RHSA-2025:15702"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7745-1 vom 2025-09-11",
"url": "https://ubuntu.com/security/notices/USN-7745-1"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2025-3596273B51 vom 2025-09-11",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2025-3596273b51"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:03178-1 vom 2025-09-11",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-September/022506.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-15701 vom 2025-09-13",
"url": "http://linux.oracle.com/errata/ELSA-2025-15701.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-15702 vom 2025-09-12",
"url": "https://linux.oracle.com/errata/ELSA-2025-15702.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-15700 vom 2025-09-13",
"url": "http://linux.oracle.com/errata/ELSA-2025-15700.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:03261-1 vom 2025-09-18",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/HLQNPAXM4G7LSYXWQAXCEFBPXKAZJM6F/"
},
{
"category": "external",
"summary": "openSUSE Security Update OPENSUSE-SU-2025:15562-1 vom 2025-09-19",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/Q3RRE36HNKNUIJTUYCVXGTJPPUXD33V6/"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:16592 vom 2025-09-24",
"url": "https://access.redhat.com/errata/RHSA-2025:16592"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:16590 vom 2025-09-24",
"url": "https://access.redhat.com/errata/RHSA-2025:16590"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:16591 vom 2025-09-24",
"url": "https://access.redhat.com/errata/RHSA-2025:16591"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS2-2025-3012 vom 2025-09-29",
"url": "https://alas.aws.amazon.com/AL2/ALAS2-2025-3012.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:17049 vom 2025-09-30",
"url": "https://access.redhat.com/errata/RHSA-2025:17049"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:17054 vom 2025-09-30",
"url": "https://access.redhat.com/errata/RHSA-2025:17054"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:17141 vom 2025-10-01",
"url": "https://access.redhat.com/errata/RHSA-2025:17141"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:17144 vom 2025-10-01",
"url": "https://access.redhat.com/errata/RHSA-2025:17144"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:17164 vom 2025-10-02",
"url": "https://access.redhat.com/errata/RHSA-2025:17164"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7246875 vom 2025-10-01",
"url": "https://www.ibm.com/support/pages/node/7246875"
},
{
"category": "external",
"summary": "IGEL Security Notice ISN-2025-41 vom 2025-10-06",
"url": "https://kb.igel.com/en/security-safety/current/isn-2025-41-cups-vulnerability"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2025:15700 vom 2025-10-10",
"url": "https://errata.build.resf.org/RLSA-2025:15700"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS2-2025-3028 vom 2025-10-15",
"url": "https://alas.aws.amazon.com/AL2/ALAS2-2025-3028.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-17054 vom 2025-10-15",
"url": "https://linux.oracle.com/errata/ELSA-2025-17054.html"
},
{
"category": "external",
"summary": "Dell Security Advisory DSA-2025-404 vom 2025-10-31",
"url": "https://www.dell.com/support/kbdoc/000385435"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:22063 vom 2025-11-25",
"url": "https://access.redhat.com/errata/RHSA-2025:22063"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-22063 vom 2025-11-25",
"url": "https://linux.oracle.com/errata/ELSA-2025-22063.html"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2025:22063 vom 2025-11-29",
"url": "https://errata.build.resf.org/RLSA-2025:22063"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:0934 vom 2026-01-22",
"url": "https://access.redhat.com/errata/RHSA-2026:0934"
},
{
"category": "external",
"summary": "Dell Security Advisory DSA-2026-030 vom 2026-01-30",
"url": "https://www.dell.com/support/kbdoc/de-de/000421570/dsa-2026-030-security-update-for-dell-networker-vproxy-multiple-third-party-component-vulnerabilities"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:20229-1 vom 2026-02-05",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024062.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:20231-1 vom 2026-02-11",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024096.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:20528-1 vom 2026-03-03",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024526.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:20535-1 vom 2026-03-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-March/024560.html"
}
],
"source_lang": "en-US",
"title": "CUPS: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2026-03-04T23:00:00.000+00:00",
"generator": {
"date": "2026-03-05T09:20:11.514+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.5.0"
}
},
"id": "WID-SEC-W-2025-2039",
"initial_release_date": "2025-09-11T22:00:00.000+00:00",
"revision_history": [
{
"date": "2025-09-11T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2025-09-14T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2025-09-17T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-09-21T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von openSUSE aufgenommen"
},
{
"date": "2025-09-24T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-09-29T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2025-09-30T22:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-10-01T22:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Red Hat und IBM aufgenommen"
},
{
"date": "2025-10-05T22:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von IGEL aufgenommen"
},
{
"date": "2025-10-06T22:00:00.000+00:00",
"number": "10",
"summary": "doppelte Eintragung bereinigt"
},
{
"date": "2025-10-09T22:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von Rocky Enterprise Software Foundation aufgenommen"
},
{
"date": "2025-10-14T22:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2025-10-15T22:00:00.000+00:00",
"number": "13",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2025-10-30T23:00:00.000+00:00",
"number": "14",
"summary": "Neue Updates von Dell aufgenommen"
},
{
"date": "2025-11-24T23:00:00.000+00:00",
"number": "15",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-11-25T23:00:00.000+00:00",
"number": "16",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2025-11-30T23:00:00.000+00:00",
"number": "17",
"summary": "Neue Updates von Rocky Enterprise Software Foundation aufgenommen"
},
{
"date": "2026-01-21T23:00:00.000+00:00",
"number": "18",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2026-01-29T23:00:00.000+00:00",
"number": "19",
"summary": "Neue Updates von Dell aufgenommen"
},
{
"date": "2026-02-05T23:00:00.000+00:00",
"number": "20",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2026-02-10T23:00:00.000+00:00",
"number": "21",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2026-03-03T23:00:00.000+00:00",
"number": "22",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2026-03-04T23:00:00.000+00:00",
"number": "23",
"summary": "Neue Updates von SUSE aufgenommen"
}
],
"status": "final",
"version": "23"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"category": "product_name",
"name": "Dell Avamar",
"product": {
"name": "Dell Avamar",
"product_id": "T039664",
"product_identification_helper": {
"cpe": "cpe:/a:dell:avamar:-"
}
}
},
{
"branches": [
{
"category": "product_version",
"name": "Virtual Edition",
"product": {
"name": "Dell NetWorker Virtual Edition",
"product_id": "T048226",
"product_identification_helper": {
"cpe": "cpe:/a:dell:networker:virtual_edition"
}
}
},
{
"category": "product_version_range",
"name": "vProxy \u003c19.14",
"product": {
"name": "Dell NetWorker vProxy \u003c19.14",
"product_id": "T050451"
}
},
{
"category": "product_version",
"name": "vProxy 19.14",
"product": {
"name": "Dell NetWorker vProxy 19.14",
"product_id": "T050451-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:dell:networker:vproxy__19.14"
}
}
}
],
"category": "product_name",
"name": "NetWorker"
}
],
"category": "vendor",
"name": "Dell"
},
{
"branches": [
{
"category": "product_name",
"name": "Fedora Linux",
"product": {
"name": "Fedora Linux",
"product_id": "74185",
"product_identification_helper": {
"cpe": "cpe:/o:fedoraproject:fedora:-"
}
}
}
],
"category": "vendor",
"name": "Fedora"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c12.16.0",
"product": {
"name": "IBM App Connect Enterprise \u003c12.16.0",
"product_id": "T047348"
}
},
{
"category": "product_version",
"name": "12.16.0",
"product": {
"name": "IBM App Connect Enterprise 12.16.0",
"product_id": "T047348-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:app_connect_enterprise:12.16.0"
}
}
},
{
"category": "product_version_range",
"name": "\u003c12.0.16",
"product": {
"name": "IBM App Connect Enterprise \u003c12.0.16",
"product_id": "T047349"
}
},
{
"category": "product_version",
"name": "12.0.16",
"product": {
"name": "IBM App Connect Enterprise 12.0.16",
"product_id": "T047349-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:app_connect_enterprise:12.0.16"
}
}
}
],
"category": "product_name",
"name": "App Connect Enterprise"
}
],
"category": "vendor",
"name": "IBM"
},
{
"branches": [
{
"category": "product_name",
"name": "IGEL OS",
"product": {
"name": "IGEL OS",
"product_id": "T017865",
"product_identification_helper": {
"cpe": "cpe:/o:igel:os:-"
}
}
}
],
"category": "vendor",
"name": "IGEL"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c2.4.13",
"product": {
"name": "Open Source CUPS \u003c2.4.13",
"product_id": "T046946"
}
},
{
"category": "product_version",
"name": "2.4.13",
"product": {
"name": "Open Source CUPS 2.4.13",
"product_id": "T046946-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:cups:cups:2.4.13"
}
}
}
],
"category": "product_name",
"name": "CUPS"
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_name",
"name": "RESF Rocky Linux",
"product": {
"name": "RESF Rocky Linux",
"product_id": "T032255",
"product_identification_helper": {
"cpe": "cpe:/o:resf:rocky_linux:-"
}
}
}
],
"category": "vendor",
"name": "RESF"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
},
{
"category": "product_name",
"name": "SUSE openSUSE",
"product": {
"name": "SUSE openSUSE",
"product_id": "T027843",
"product_identification_helper": {
"cpe": "cpe:/o:suse:opensuse:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-58060",
"product_status": {
"known_affected": [
"67646",
"T004914",
"T050451",
"T032255",
"74185",
"T039664",
"T047348",
"T047349",
"2951",
"T002207",
"T017865",
"T000126",
"T046946",
"T027843",
"398363",
"T048226"
]
},
"release_date": "2025-09-11T22:00:00.000+00:00",
"title": "CVE-2025-58060"
},
{
"cve": "CVE-2025-58364",
"product_status": {
"known_affected": [
"67646",
"T004914",
"T050451",
"T032255",
"74185",
"T039664",
"T047348",
"T047349",
"2951",
"T002207",
"T017865",
"T000126",
"T046946",
"T027843",
"398363",
"T048226"
]
},
"release_date": "2025-09-11T22:00:00.000+00:00",
"title": "CVE-2025-58364"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…