Critical 9.9 Linux bug: CUPS your ears, details are here!
www.thestack.technology
Some 300,000 endpoints may be publicly exposed to RCE, but these are likely to be largely desktops not servers.
  • Boris NotTooBadinov@lemmy.worldEnglish
    1·
    2 months ago

    Red Hat said that “mitigation of these vulnerabilities is as simple as running two commands, especially in any environment where printing is not needed.”

    …all of those words, yet they don’t actually list the command(s) in the article

    Here are the commands from a different article (basically stop and disable the cups-browsed daemon and/or block port udp:631):

    What to do:
    Disable and remove the cups-browsed service (if not needed)
    sudo systemctl stop cups-browsed
    sudo systemctl disable cups-browsed

    Block all traffic to UDP port 631 & and all DNS-SD traffic