CVE-2026-39316

CVSS v3.1

6.2

Medium

Vector

AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions OpenPrinting CUPS versions 2.4.16 and prior

Description OpenPrinting CUPS is a printing system for Linux and Unix-like systems. A use-after-free issue exists in the CUPS scheduler (cupsd) when temporary printers are automatically removed. The cupsdDeleteTemporaryPrinters() function in scheduler/printers.c calls cupsdDeletePrinter() without first expiring subscriptions referencing the printer, resulting in a dangling pointer (cupsd subscription t.dest) to freed memory. Dereferencing this pointer at various code locations can cause the cupsd daemon to crash, leading to a denial of service. Heap grooming could potentially lead to code execution.

Recommendations Update OpenPrinting CUPS to a version later than 2.4.16.

Fix

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2026-05932

CVE-2026-39316

ECHO-2CA9-F843-B23E

OESA-2026-1930

OESA-2026-1931

OESA-2026-1932

OESA-2026-1933

OESA-2026-2020

OESA-2026-2021

OPENSUSE-SU-2026:10589-1

RHSA-2026:8814

Affected Products

Cups

CVE-2026-39316

Weakness Enumeration

Related Identifiers

Affected Products

References · 43