Your submission was sent successfully! Close

CVE-2017-15400

Published: 7 February 2018

Insufficient restriction of IPP filters in CUPS in Google Chrome OS prior to 62.0.3202.74 allowed a remote attacker to execute a command with the same privileges as the cups daemon via a crafted PPD file, aka a printer zeroconfig CRLF issue.

Priority

Medium

CVSS 3 base score: 7.8

Status

Package Release Status
cups
Launchpad, Ubuntu, Debian
artful Not vulnerable
(2.2.4-7ubuntu3)
bionic Not vulnerable
(2.2.6-5)
precise Does not exist

trusty Does not exist
(trusty was not-affected [code not present])
upstream
Released (2.2.2)
xenial Not vulnerable
(code not present)