Print Page - CUPS and evil people

Title: CUPS and evil people
Post by: kanliot on September 27, 2024, 04:34:25 AM

https://www.reddit.com/r/sysadmin/comments/1fq5ojq/99_cve_announced_is_a_rce_in_cups/

This bug is a "remote code execution" bug.

Basically, any computer with the CUPS service running, that's not behind a firewall... allows the attacker to add a printer, and run scripts as root.

The mitigation for now, is not to print anything, as the hack doesn't allow the attacker to start new printing jobs.

Something to consider... here in the USA i did

Code Select

    apt remove cups
    apt remove cups-browsed
    apt-mark hold cups-browsed
    apt-mark hold cups

Title: Re: CUPS and evil people
Post by: jymm on December 18, 2024, 10:48:20 AM

Or go offline to print. You can't hack without access. Shutting down wifi or pulling your wired lan cord would prevent hacking while you print.

Title: Re: CUPS and evil people
Post by: Dragonspirit on August 04, 2025, 04:28:41 AM

Dump Firefox and UFW, and install Librewolf and Portmaster should fix the mess..

SparkyLinux Forums

Software & hardware support => Desktops => Topic started by: kanliot on September 27, 2024, 04:34:25 AM