Cups · Cups · CVE-2026-34979
**Name of the Vulnerable Software and Affected Versions**
CUPS versions prior to 2.4.16
**Description**
A heap-based buffer overflow occurs in the CUPS scheduler when building filter option strings from job attributes. This issue is located in the `get options()` function and may allow a remote attacker to execute arbitrary code.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.