Petr Sklenar

**Name of the Vulnerable Software and Affected Versions** cups-filters versions prior to 1.0.70 **Description** The issue is caused by a heap-based buffer overflow in the WriteProlog function of the cups-filters package, which can be exploited by a remote attacker to execute arbitrary code or cause a denial of service using a specially crafted print job. The vulnerability is triggered by a small line size in a print job. **Recommendations** For cups-filters versions prior to 1.0.70, update to version 1.0.70 or later to resolve the issue. As a temporary workaround, consider restricting access to the print job functionality to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** HP Linux Imaging and Printing (HPLIP) versions prior to 3.13.2 **Description** The issue allows local users to delete log files due to world-writable permissions for /var/log/hp and /var/log/hp/tmp. **Recommendations** For versions prior to 3.13.2, update to version 3.13.2 or later to resolve the issue.