CVE-2025-64524

Name
CVE-2025-64524
Description
cups-filters contains backends, filters, and other software required to get the cups printing service working on operating systems other than macos. In versions 2.0.1 and prior, a heap-buffer-overflow vulnerability in the rastertopclx filter causes the program to crash with a segmentation fault when processing maliciously crafted input data. This issue can be exploited to trigger memory corruption, potentially leading to arbitrary code execution. This issue has been patched via commit 956283c.
NVD Severity
low
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC https://github.com/OpenPrinting/cups-filters/commit/956283c74a34ae924266a2a63f8e5f529a1abd06
CONFIRM https://github.com/OpenPrinting/cups-filters/security/advisories/GHSA-rq44-2q5p-x3hv
af854a3a-2127-422b-91ae-364da2661108 http://www.openwall.com/lists/oss-security/2025/11/20/1

Match rules

CPE URI Source package Min version Max version
cups-filters >= 0 <= 2.0.1

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
cups-filters edge-community 1.28.17-r8 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
cups-filters edge-community 1.28.17-r7 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
cups-filters edge-community 1.28.17-r6 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
cups-filters edge-community 1.28.17-r3 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
cups-filters 3.22-community 1.28.17-r8 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
cups-filters 3.22-community 1.28.17-r6 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
cups-filters 3.22-community 1.28.17-r3 None possibly vulnerable