The `cups-browsed` component is responsible for discovering printers on a network and adding them to the system. In order to do so, the service uses two distinct protocols. For the first one, the service binds on all interfaces on UDP port 631 and accepts a custom packet from any untrusted source. This is exploitable from outside the LAN if the computer is exposed on the public internet. The service also listens for DNS-SD / mDNS advertisements trough AVAHI. n both cases, when a printer is discovered by either the UDP packet or mDNS, its IPP or IPPS url is automatically contacted by cups-browsed and a `Get-Printer-Attributes` request is sent to it. Among other things, this leaks its kernel version via `User-Agent` header.
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2024:7346 https://access.redhat.com/errata/RHSA-2024:7346
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Advanced Update Support Via RHSA-2024:7461 https://access.redhat.com/errata/RHSA-2024:7461
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.8 Extended Update Support Via RHSA-2024:7462 https://access.redhat.com/errata/RHSA-2024:7462
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2024:7463 https://access.redhat.com/errata/RHSA-2024:7463
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Via RHSA-2024:7506 https://access.redhat.com/errata/RHSA-2024:7506
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Telecommunications Update Service Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Via RHSA-2024:7504 https://access.redhat.com/errata/RHSA-2024:7504
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.2 Extended Update Support Via RHSA-2024:7503 https://access.redhat.com/errata/RHSA-2024:7503
This issue has been addressed in the following products: Red Hat Enterprise Linux 7.7 Advanced Update Support Via RHSA-2024:7551 https://access.redhat.com/errata/RHSA-2024:7551
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Extended Lifecycle Support Via RHSA-2024:7553 https://access.redhat.com/errata/RHSA-2024:7553
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Red Hat Enterprise Linux 8.6 Telecommunications Update Service Via RHSA-2024:7623 https://access.redhat.com/errata/RHSA-2024:7623