Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
🔗 CVE IDs covered (12)
📋 Description
CVE-2025-57812 — cups: CUPS-Filters: Information disclosure and data corruption via crafted TIFF image file processing
CVE-2025-58060 — cups: Authentication Bypass in CUPS Authorization Handling
CVE-2025-58364 — cups: Null Pointer Dereference in CUPS ipp_read_io() Leading to Remote DoS
CVE-2025-58436 — cups: Slow client communication leads to a possible DoS attack
CVE-2025-64503 — cups: cups-filters: cups-filters: Out-of-bounds write via crafted PDF MediaBox
CVE-2026-27447 — cups: OpenPrinting CUPS: Authorization bypass via case-insensitive username comparison
CVE-2026-34978 — cups: OpenPrinting CUPS: Denial of Service via path traversal in RSS notifier
CVE-2026-34979 — cups: OpenPrinting CUPS: Denial of Service via heap-based buffer overflow in job attribute processing
CVE-2026-34980 — cups: OpenPrinting CUPS: Shared PostScript queue lets anonymous Print-Job requests reach lp code execution over the network
CVE-2026-34990 — cups: OpenPrinting CUPS: Privilege escalation via arbitrary file overwrite due to coerced authentication
CVE-2026-39314 — cups: CUPS: Denial of Service via integer underflow in IPP attribute handling
CVE-2026-39316 — cups: CUPS: Denial of Service and potential arbitrary code execution via use-after-free vulnerability when deleting temporary printers.
🔗 References (16)
- selfhttps://access.redhat.com/errata/RHSA-2026:8814
- externalhttps://images.redhat.com/
- externalhttps://access.redhat.com/security/cve/CVE-2025-58364
- externalhttps://access.redhat.com/security/updates/classification/
- externalhttps://access.redhat.com/security/cve/CVE-2025-58060
- externalhttps://access.redhat.com/security/cve/CVE-2025-64503
- externalhttps://access.redhat.com/security/cve/CVE-2025-58436
- externalhttps://access.redhat.com/security/cve/CVE-2025-57812
- externalhttps://access.redhat.com/security/cve/CVE-2026-39316
- externalhttps://access.redhat.com/security/cve/CVE-2026-39314
- externalhttps://access.redhat.com/security/cve/CVE-2026-34990
- externalhttps://access.redhat.com/security/cve/CVE-2026-34980
- externalhttps://access.redhat.com/security/cve/CVE-2026-34979
- externalhttps://access.redhat.com/security/cve/CVE-2026-34978
- externalhttps://access.redhat.com/security/cve/CVE-2026-27447
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_8814.json