Dean Reges

**Name of the Vulnerable Software and Affected Versions** CUPS versions prior to 1.2.12-r8 CUPS versions 1.3 **Description** The issue involves multiple integer overflows in the CUPS package, specifically in the `filter/image-png.c` and `filter/image-zoom.c` files, which can be exploited to cause a denial of service and trigger memory corruption. This can be achieved by using a crafted PNG image. The vulnerability can be exploited remotely and may lead to disruption of confidentiality, integrity, and availability of protected information. **Recommendations** For CUPS versions prior to 1.2.12-r8, update to version 1.2.12-r8 or later to resolve the issue. For CUPS version 1.3, consider disabling the `filter/image-png.c` and `filter/image-zoom.c` functions until a patch is available. As a temporary workaround, restrict access to the CUPS service to minimize the risk of exploitation.