CVE-2023-34241

MITRE NVD CVE.ORG Print: PDF PDF

Summary

CVECVE-2023-34241
StatePUBLIC
Assigner[email protected]
Source PriorityCVE Program / NVD first with legacy fallback
Published2023-06-22 23:15:00 UTC
Updated2023-11-17 19:33:00 UTC
DescriptionOpenPrinting CUPS is a standards-based, open source printing system for Linux and other Unix-like operating systems. Starting in version 2.0.0 and prior to version 2.4.6, CUPS logs data of free memory to the logging service AFTER the connection has been closed, when it should have logged the data right before. This is a use-after-free bug that impacts the entire cupsd process. The exact cause of this issue is the function `httpClose(con->http)` being called in `scheduler/client.c`. The problem is that httpClose always, provided its argument is not null, frees the pointer at the end of the call, only for cupsdLogClient to pass the pointer to httpGetHostname. This issue happens in function `cupsdAcceptClient` if LogLevel is warn or higher and in two scenarios: there is a double-lookup for the IP Address (HostNameLookups Double is set in `cupsd.conf`) which fails to resolve, or if CUPS is compiled with TCP wrappers and the connection is refused by rules from `/etc/hosts.allow` and `/etc/hosts.deny`. Version 2.4.6 has a patch for this issue.

Risk And Classification

Problem Types: CWE-416

NVD Known Affected Configurations (CPE 2.3)

TypeVendorProductVersionUpdateEditionLanguage
Operating System Apple Macos All All All All
Operating System Debian Debian Linux 10.0 All All All
Operating System Fedoraproject Fedora 37 All All All
Operating System Fedoraproject Fedora 38 All All All
Application Openprinting Cups All All All All

References

ReferenceSourceLinkTags
[SECURITY] Fedora 38 Update: cups-2.4.6-1.fc38 - package-announce - Fedora Mailing-Lists MISC lists.fedoraproject.org
Merge pull request from GHSA-qjgh-5hcq-5f25 · OpenPrinting/cups@9809947 · GitHub MISC github.com
About the security content of macOS Big Sur 11.7.9 - Apple Support MISC support.apple.com
About the security content of macOS Monterey 12.6.8 - Apple Support MISC support.apple.com
[SECURITY] Fedora 37 Update: cups-2.4.6-1.fc37 - package-announce - Fedora Mailing-Lists MISC lists.fedoraproject.org
use-after-free in cupsdAcceptClient() · Advisory · OpenPrinting/cups · GitHub MISC github.com
Release v2.4.6 · OpenPrinting/cups · GitHub MISC github.com
oss-security - Re: CVE-2023-34241: CUPS: use-after-free in cupsdAcceptClient() MISC www.openwall.com
About the security content of macOS Ventura 13.5 - Apple Support MISC support.apple.com
oss-security - Re: CVE-2023-34241: CUPS: use-after-free in cupsdAcceptClient() MISC www.openwall.com
[SECURITY] [DLA 3476-1] cups security update MISC lists.debian.org
CVE Program record CVE.ORG www.cve.org canonical
NVD vulnerability detail NVD nvd.nist.gov canonical, analysis

Legacy QID Mappings

  • 161125 Oracle Enterprise Linux Security Update for cups (ELSA-2023-6596)
  • 161184 Oracle Enterprise Linux Security Update for cups (ELSA-2023-7165)
  • 199436 Ubuntu Security Notification for CUPS Vulnerability (USN-6184-1)
  • 199585 Ubuntu Security Notification for CUPS Vulnerability (USN-6184-2)
  • 242320 Red Hat Update for cups (RHSA-2023:6596)
  • 242442 Red Hat Update for cups (RHSA-2023:7165)
  • 243034 Red Hat Update for cups (RHSA-2024:1101)
  • 243084 Red Hat Update for cups (RHSA-2024:1409)
  • 284111 Fedora Security Update for cups (FEDORA-2023-fac5968b55)
  • 284316 Fedora Security Update for cups (FEDORA-2023-9dbd5b28d4)
  • 355570 Amazon Linux Security Advisory for cups : ALAS-2023-1777
  • 355587 Amazon Linux Security Advisory for cups : ALAS2-2023-2109
  • 355619 Amazon Linux Security Advisory for cups : ALAS2023-2023-235
  • 378687 Apple macOS Ventura 13.5 Not Installed (HT213843)
  • 378688 Apple macOS Monterey 12.6.8 Not Installed (HT213844)
  • 378689 Apple macOS Big Sur 11.7.9 Not Installed (HT213845)
  • 379618 Alibaba Cloud Linux Security Update for cups (ALINUX3-SA-2024:0049)
  • 503035 Alpine Linux Security Update for cups
  • 503036 Alpine Linux Security Update for cups
  • 503037 Alpine Linux Security Update for cups
  • 6000127 Debian Security Update for cups (DLA 3476-1)
  • 673262 EulerOS Security Update for cups (EulerOS-SA-2023-2577)
  • 673291 EulerOS Security Update for cups (EulerOS-SA-2023-2607)
  • 673362 EulerOS Security Update for cups (EulerOS-SA-2023-2806)
  • 673384 EulerOS Security Update for cups (EulerOS-SA-2023-2856)
  • 673444 EulerOS Security Update for cups (EulerOS-SA-2023-2839)
  • 673660 EulerOS Security Update for cups (EulerOS-SA-2023-2782)
  • 673700 EulerOS Security Update for cups (EulerOS-SA-2023-3119)
  • 710864 Gentoo Linux CUPS Multiple Vulnerabilities (GLSA 202402-17)
  • 754125 SUSE Enterprise Linux Security Update for cups (SUSE-SU-2023:2616-1)
  • 754892 SUSE Enterprise Linux Security Update for cups (SUSE-SU-2023:3706-1)
  • 941358 AlmaLinux Security Update for cups (ALSA-2023:6596)
  • 941447 AlmaLinux Security Update for cups (ALSA-2023:7165)
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report