Test ID:	1.3.6.1.4.1.25623.1.1.1.1.2023.5407
Category:	Debian Local Security Checks
Title:	Debian: Security Advisory (DSA-5407-1)
Summary:	The remote host is missing an update for the Debian 'cups-filters' package(s) announced via the DSA-5407-1 advisory.
Description:	Summary: The remote host is missing an update for the Debian 'cups-filters' package(s) announced via the DSA-5407-1 advisory. Vulnerability Insight: It was discovered that missing input sanitising in cups-filters, when using the Backend Error Handler (beh) backend to create an accessible network printer, may result in the execution of arbitrary commands. For the stable distribution (bullseye), this problem has been fixed in version 1.28.7-1+deb11u2. We recommend that you upgrade your cups-filters packages. For the detailed security status of cups-filters please refer to its security tracker page at: [link moved to references] Affected Software/OS: 'cups-filters' package(s) on Debian 11. Solution: Please install the updated package(s). CVSS Score: 9.0 CVSS Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2023-24805 Debian Security Information: DSA-5407 (Google Search) https://www.debian.org/security/2023/dsa-5407 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KL2SJMZQ5T5JIH3PMQ2CGCY5TUUE255Y/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YNCGL2ZTAS2GFF23QFT55UFWIDMI4ZJK/ https://security.gentoo.org/glsa/202401-06 https://github.com/OpenPrinting/cups-filters/commit/8f274035756c04efeb77eb654e9d4c4447287d65 https://github.com/OpenPrinting/cups-filters/security/advisories/GHSA-gpxc-v2m8-fr3x https://lists.debian.org/debian-lts-announce/2023/05/msg00021.html
Copyright	Copyright (C) 2023 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.