Out-of-bounds read in CUPS

#VU27378 Out-of-bounds read in CUPS

Published: 2020-04-28

Vulnerability identifier: #VU27378

Vulnerability risk: Low

CVSSv3.1: 3.7 [CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L/E:U/RL:O/RC:C]

CVE-ID: CVE-2019-8842

CWE-ID: CWE-125

Exploitation vector: Local network

Exploit availability: No

Vulnerable software:
CUPS
Server applications / Other server solutions

Vendor: Apple Inc.

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition within ippReadIO function. A remote attacker can pass specially crafted document to the service, trigger out-of-bounds read error and read contents of memory on the system or crash the service.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

CUPS: 2.2.0 - 2.3.1

External links
http://github.com/apple/cups/releases/tag/v2.3.3

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

openEuler update for cups

Ubuntu update for cups

Out-of-bounds read in cups (Alpine package)

Remote code execution in cups