A remote attacker who has successfully installed or hijacked an exposed printer (via UPD or mDNS) and was able to return a malicious IPP attribute, the attacker may be able to exploit FoomaticRIPCommandLine to execute arbitrary commands. Due to a lack of sanitization in `cfGetPrinterAttributes` API and `ppdCreatePPDFromIPP2`, a vulnerable CUPS system will execute the `foomatic-rip` filter binary when a print job is sent to the printer.
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2024:7346 https://access.redhat.com/errata/RHSA-2024:7346
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Advanced Update Support Via RHSA-2024:7461 https://access.redhat.com/errata/RHSA-2024:7461
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.8 Extended Update Support Via RHSA-2024:7462 https://access.redhat.com/errata/RHSA-2024:7462
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2024:7463 https://access.redhat.com/errata/RHSA-2024:7463
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Via RHSA-2024:7506 https://access.redhat.com/errata/RHSA-2024:7506
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Telecommunications Update Service Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Via RHSA-2024:7504 https://access.redhat.com/errata/RHSA-2024:7504
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.2 Extended Update Support Via RHSA-2024:7503 https://access.redhat.com/errata/RHSA-2024:7503
This issue has been addressed in the following products: Red Hat Enterprise Linux 7.7 Advanced Update Support Via RHSA-2024:7551 https://access.redhat.com/errata/RHSA-2024:7551
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Extended Lifecycle Support Via RHSA-2024:7553 https://access.redhat.com/errata/RHSA-2024:7553
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Red Hat Enterprise Linux 8.6 Telecommunications Update Service Via RHSA-2024:7623 https://access.redhat.com/errata/RHSA-2024:7623