- Vulnerability/
- USN-6392-1
USN-6392-1: libppd vulnerability
First published: Wed Sep 20 2023(Updated: )
It was discovered that libppd incorrectly parsed certain Postscript objects. If a user or automated system were tricked into printing a specially crafted document, a remote attacker could use this issue to cause libppd to crash, resulting in a denial of service, or possibly execute arbitrary code.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/libppd2 | <2:2.0~rc1-0ubuntu1.2 | 2:2.0~rc1-0ubuntu1.2 |
| Ubuntu Linux | =23.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2023-4504.
What is the severity of the vulnerability?
The severity of this vulnerability is high.
How does this vulnerability manifest?
This vulnerability allows a remote attacker to cause libppd to crash, resulting in a denial of service, or possibly execute arbitrary code.
Which versions of libppd are affected by this vulnerability?
The libppd version 2:2.0~rc1-0ubuntu1.2 is affected by this vulnerability.
How can I fix this vulnerability?
To fix this vulnerability, update libppd to version 2:2.0~rc1-0ubuntu1.2 or later.
- agent/severity
- agent/type
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/trending
- agent/references
- agent/title
- agent/tags
- agent/event
- agent/description
- collector/usn
- anchor-related/USN-6391-1
- anchor-related/USN-6391-2
- agent/software-canonical-lookup-request
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu linux
- version/ubuntu linux/23.04