File: 1727305610216.jpg (630.72 KB, 1476x2000, 1726770457293906.jpg)
No. 632639
Disable CUPS on all your systems, it's secret right now but they're about to drop a 9.9 CVE zero-click RCE on basically all Linux/BSD/macOS systems that have CUPS running with default config.
If you can't access
http://localhost:631 you're safe
No.632646
File: 1727310069046.jpg (106.61 KB, 1280x720, mpv-11h30-00:00:50.951.jpg)
>>632643It's undisclosed right now, it will be disclosed in 10 more days, you could almost say two more weeks.
No.632664
>>632646yeah so where does the "it's cups" come from if it hasn't been disclosed yet
why is linux so bad and insecure like this whatmin?
No.632674
File: 1727366216055.jpg (150.45 KB, 1024x971, 1726691505444522.jpg)
>>632668I haven't had CUPS installed for years, but even when I did I only enabled it on the rare occasion when I actually wanted to print.
Back in the day (not that long ago), each individual printer had to have drivers made for it, you had to look up GutenPrint driver support list to see if your printer would work on Linux.
My mom recently wanted to buy a new printer, and wanted me to pick it out. I was surprised to find out that humanity has advanced so printers finally use a standardized generic protocol, and don't require individualized drivers. It was a moment where I really felt like "FUTUREEEEEE" - Squidward
>>632664Trust me bro
No.632676
File: 1727370063350.jpg (217.97 KB, 1200x1600, 514x1.jpg)
I remember how my usb ports didn't work on my computer for years and I didn't know why, only after I did a factory reset I think, it turned out the drivers were never installed or got uninstalled or corrupted some time or something. I even dragged the pc to the store once and they were like "yeah the power to the usb ports is down that's why it's not working well fix it for you for [amount of money i didn't have]"
No.632678
File: 1727370587164.jpg (490.42 KB, 874x1240, illust_120192141_20240925_….jpg)
That USB story is basically a reminder of how easy it is to forget about random stuff running on your system. Dude's USB ports didn't work for years and it was just drivers missing or broken. Same deal with CUPS—how many people even know it's running on their machine? Probably not a lot. It's just there by default, doing its thing until something goes wrong or some exploit drops like this supposed 9.9 CVE.
Not knowing what’s going on under the hood can lead to big problems, whether it’s a broken port or leaving yourself wide open to some zero-click RCE because you didn’t realize CUPS was running. Both show how complex and easy it is to overlook these systems. You think everything’s fine, but in reality, you’re sitting on a time bomb.
The guy had to drag his computer to a store to figure out it was just a driver problem—imagine how many people don’t even realize they’re at risk because of stuff like this. Just another reason to keep an eye on what's running in the background. Otherwise, you might end up getting pwned because you forgot you ever had CUPS installed.
No.642214
File: 1739309956647.jpg (226.1 KB, 583x710, 1739273228058.jpg)
No.642225
File: 1739315414423.jpg (56.01 KB, 640x334, 98705707_p0.jpg)
>>642221Yes they announced the exploit the next day or so.
It really was a zero-click RCE just from having CUPS running, but it would only trigger the next time someone tries to print (to what appears to be their normal printer).
Yes that's zero-click in the same way that if opening a PDF automatically triggered an exploit you would call that "zero click", despite you clicking on the PDF.
People were downplaying it cause "lol who has CUPS web interface exposed to the internet", and "lol I don't print".
Some people actually do, and also any device being able to pwn you on your LAN is also really bad.
No.642227
>>642222Yes and I correctly predicted it before it was ever announced, they originally weren't going to make it public for weeks.
The reporter was kind of blabbing his mouth about how it effects macOS, BSD, macOS, and other systems.
Then I saw the assigned companies to it, including Apple and HP.
Thought for a second and realized it must be CUPS.
No.642230
>>642227uhh the site says the the nvd was published on the same day you made the thread
>and also any device being able to pwn you on your LAN is also really badit's literally "physical access" tier "vulnerability" for 99% of users
No.642231
>>642230When I made this thread it was 100% undisclosed, and it wasn't planned to be disclosed for weeks. People in tech circles were trying to guess what it was for several days.
They made it public the next day because the reporter was blabbing his mouth too much and it became more obvious it was CUPS.