No. 632639 [Reply]
Disable CUPS on all your systems, it's secret right now but they're about to drop a 9.9 CVE zero-click RCE on basically all Linux/BSD/macOS systems that have CUPS running with default config.
If you can't access
http://localhost:631 you're safe
No.632674
File: 1727366216055.jpg (150.45 KB, 1024x971, 1726691505444522.jpg)
>>632668I haven't had CUPS installed for years, but even when I did I only enabled it on the rare occasion when I actually wanted to print.
Back in the day (not that long ago), each individual printer had to have drivers made for it, you had to look up GutenPrint driver support list to see if your printer would work on Linux.
My mom recently wanted to buy a new printer, and wanted me to pick it out. I was surprised to find out that humanity has advanced so printers finally use a standardized generic protocol, and don't require individualized drivers. It was a moment where I really felt like "FUTUREEEEEE" - Squidward
>>632664Trust me bro
No.632676
File: 1727370063350.jpg (217.97 KB, 1200x1600, 514x1.jpg)
I remember how my usb ports didn't work on my computer for years and I didn't know why, only after I did a factory reset I think, it turned out the drivers were never installed or got uninstalled or corrupted some time or something. I even dragged the pc to the store once and they were like "yeah the power to the usb ports is down that's why it's not working well fix it for you for [amount of money i didn't have]"
No.632678
File: 1727370587164.jpg (490.42 KB, 874x1240, illust_120192141_20240925_….jpg)
That USB story is basically a reminder of how easy it is to forget about random stuff running on your system. Dude's USB ports didn't work for years and it was just drivers missing or broken. Same deal with CUPS—how many people even know it's running on their machine? Probably not a lot. It's just there by default, doing its thing until something goes wrong or some exploit drops like this supposed 9.9 CVE.
Not knowing what’s going on under the hood can lead to big problems, whether it’s a broken port or leaving yourself wide open to some zero-click RCE because you didn’t realize CUPS was running. Both show how complex and easy it is to overlook these systems. You think everything’s fine, but in reality, you’re sitting on a time bomb.
The guy had to drag his computer to a store to figure out it was just a driver problem—imagine how many people don’t even realize they’re at risk because of stuff like this. Just another reason to keep an eye on what's running in the background. Otherwise, you might end up getting pwned because you forgot you ever had CUPS installed.