| Name | CVE-2023-32360 |
| Description | An authentication issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. An unauthenticated user may be able to access recently printed documents. |
| Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
| Debian Bugs | 1051953 |
Vulnerable and fixed packages
The table below lists information on source packages.
| Source Package | Release | Version | Status |
|---|
| cups (PTS) | buster | 2.2.10-6+deb10u6 | vulnerable |
| buster (security) | 2.2.10-6+deb10u8 | vulnerable |
| bullseye (security), bullseye | 2.3.3op2-3+deb11u2 | vulnerable |
| bookworm | 2.4.2-3+deb12u1 | vulnerable |
| trixie, sid | 2.4.2-6 | fixed |
The information below is based on the following data on fixed versions.
| Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
|---|
| cups | source | (unstable) | 2.4.2-6 | | | 1051953 |
Notes
[bookworm] - cups <no-dsa> (Workaround exist; patch changes only default cupsd.conf; can be fixed via point release)
[bullseye] - cups <no-dsa> (Workaround exist; patch changes only default cupsd.conf; can be fixed via point release)
https://github.com/OpenPrinting/cups/commit/a0c8b9c9556882f00c68b9727a95a1b6d1452913 (v2.4.3)