Michal Kowalczyk

**Name of the Vulnerable Software and Affected Versions** cups-filters versions 1.0.42 through 1.2.0 Foomatic versions 4.0.x **Description** The issue is related to an incomplete blacklist vulnerability in the util.c component of foomatic-rip, which is part of the cups-filters package and the Foomatic operating system. This vulnerability can be exploited by a remote attacker to execute arbitrary commands by using ` (backtick) characters in a print job. **Recommendations** For cups-filters versions 1.0.42 through 1.2.0, update to version 1.2.0 or later to resolve the issue. For Foomatic versions 4.0.x, consider disabling the foomatic-rip component until a patch is available. As a temporary workaround, restrict the use of the ` (backtick) character in print jobs to minimize the risk of exploitation.