MEDIUM🇬🇧 English

CVE-2025-64503

CVSS 4.0v3.1pub. 2025-11-12upd. 2026-01-20

cups-filters contains backends, filters, and other software required to get the cups printing service working on operating systems other than macos. In cups-filters prior to 1.28.18, by crafting a PDF file with a large `MediaBox` value, an attacker can cause CUPS-Filter 1.x’s `pdftoraster` tool to write beyond the bounds of an array. First, a PDF with a large `MediaBox` width value causes `header.cupsWidth` to become large. Next, the calculation of `bytesPerLine = (header.cupsBitsPerPixel * header.cupsWidth + 7) / 8` overflows, resulting in a small value. Then, `lineBuf` is allocated with the small `bytesPerLine` size. Finally, `convertLineChunked` calls `writePixel8`, which attempts to write to `lineBuf` outside of its buffer size (out of bounds write). In libcupsfilters, the maintainers found the same `bytesPerLine` multiplication without overflow check, but the provided test case does not cause an overflow there, because the values are different. Commit 50d94ca0f2fa6177613c97c59791bde568631865 contains a patch, which is incorporated into cups-filters version 1.28.18.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
  • Openprinting Cups Filters

    APP
    Openprinting
    < 1.28.18
  • Openprinting Libcupsfilters

    APP
    Openprinting
    2.0.0 – 2.1.2 (bez)
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2024-47076HIGH8.6ten sam produkt

CUPS is a standards-based, open-source printing system, and `libcupsfilters` contains the code of the filters ...

CVE-2025-64524LOW3.3ten sam produkt

cups-filters zawiera komponenty backendów, filtry i inne oprogramowanie niezbędne do uruchomienia usługi druko...

CVE-2025-57812LOW3.7ten sam produkt

CUPS to standardowy open-source'owy system drukowania, a `libcupsfilters` zawiera kod filtrów z byłego pakietu...

CVE-2023-34095CRITICAL9.8ten sam vendor

cpdb-libs provides frontend and backend libraries for the Common Printing Dialog Backends (CPDB) project. In v...

CVE-2025-58060HIGH8.0ten sam vendor

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versio...