CRITICAL🇬🇧 English

CVE-2023-34095

CVSS 9.8v3.1pub. 2023-06-14upd. 2025-04-10

cpdb-libs provides frontend and backend libraries for the Common Printing Dialog Backends (CPDB) project. In versions 1.0 through 2.0b4, cpdb-libs is vulnerable to buffer overflows via improper use of `scanf(3)`. cpdb-libs uses the `fscanf()` and `scanf()` functions to parse command lines and configuration files, dropping the read string components into fixed-length buffers, but does not limit the length of the strings to be read by `fscanf()` and `scanf()` causing buffer overflows when a string is longer than 1023 characters. A patch for this issue is available at commit f181bd1f14757c2ae0f17cc76dc20421a40f30b7. As all buffers have a length of 1024 characters, the patch limits the maximum string length to be read to 1023 by replacing all occurrences of `%s` with `%1023s` in all calls of the `fscanf()` and `scanf()` functions.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Openprinting Cpdb Libs

    APP
    Openprinting
    2.01.0 – 2.0 (bez)
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
Memory
CWE
Referencje

Powiązane podatności

CVE-2025-58060HIGH8.0ten sam vendor

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versio...

CVE-2024-47175HIGH8.6ten sam vendor

CUPS is a standards-based, open-source printing system, and `libppd` can be used for legacy PPD file support. ...

CVE-2024-47076HIGH8.6ten sam vendor

CUPS is a standards-based, open-source printing system, and `libcupsfilters` contains the code of the filters ...

CVE-2023-4504HIGH7.0ten sam vendor

Due to failure in validating the length provided by an attacker-crafted PPD PostScript document, CUPS and libp...

CVE-2023-32324HIGH7.5ten sam vendor

OpenPrinting CUPS is an open source printing system. In versions 2.4.2 and prior, a heap buffer overflow vulne...