ELSA-2026-0596

ELSA-2026-0596 - cups security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2026-01-14

Description

[1:2.2.6-66]
- fix use-after-free reported by OSH

[1:2.2.6-65]
- RHEL-129729 CVE-2025-58436 cups: Slow client communication leads to a possible DoS attack
- RHEL-129720 CVE-2025-61915 cups: Local denial-of-service via cupsd.conf update and related issues

Related CVEs

CVE-2025-58436

CVE-2025-61915

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label
Oracle Linux 8 (aarch64)	cups-2.2.6-66.el8_10.src.rpm	23e78e973f3286a96da4945ee0966e785c135c88e76524a63830f536266ef272	-	ol8_aarch64_appstream
	cups-2.2.6-66.el8_10.src.rpm	23e78e973f3286a96da4945ee0966e785c135c88e76524a63830f536266ef272	-	ol8_aarch64_baseos_latest
	cups-2.2.6-66.el8_10.src.rpm	23e78e973f3286a96da4945ee0966e785c135c88e76524a63830f536266ef272	-	ol8_aarch64_u10_baseos_patch
	cups-2.2.6-66.el8_10.aarch64.rpm	cb4e76035147656d1f2fbea7d9211d9f2c2c5023c99a4bd2b26a48ac3dc7e27c	-	ol8_aarch64_appstream
	cups-client-2.2.6-66.el8_10.aarch64.rpm	2e2dfcbcb75a775af50e3543670498524ba068561506fb12e645f010ad5ff611	-	ol8_aarch64_appstream
	cups-devel-2.2.6-66.el8_10.aarch64.rpm	d6869129c49b7d0e61493d7d8592c03c18499a9f7fc0bd7534c1b2ddc111a751	-	ol8_aarch64_appstream
	cups-filesystem-2.2.6-66.el8_10.noarch.rpm	bf1b7d63356fd8249611f5874b51e7d9651951e98dc86186d872907ea93e69ae	-	ol8_aarch64_appstream
	cups-ipptool-2.2.6-66.el8_10.aarch64.rpm	91bf5a6a4b1599e8e82a24f8c70688cfac9fb8844c873d7d46679e026417d16e	-	ol8_aarch64_appstream
	cups-libs-2.2.6-66.el8_10.aarch64.rpm	00e6d6e15571ef61ffe2a016fed52687f1c3351296e979eb8d4bce96f7a2d031	-	ol8_aarch64_baseos_latest
	cups-libs-2.2.6-66.el8_10.aarch64.rpm	00e6d6e15571ef61ffe2a016fed52687f1c3351296e979eb8d4bce96f7a2d031	-	ol8_aarch64_u10_baseos_patch
	cups-lpd-2.2.6-66.el8_10.aarch64.rpm	13097f6f8e40f5139cf41090fa172c05ab015ebd74e07e0471bd10b68576d52e	-	ol8_aarch64_appstream
Oracle Linux 8 (x86_64)	cups-2.2.6-66.el8_10.src.rpm	23e78e973f3286a96da4945ee0966e785c135c88e76524a63830f536266ef272	-	ol8_x86_64_appstream
	cups-2.2.6-66.el8_10.src.rpm	23e78e973f3286a96da4945ee0966e785c135c88e76524a63830f536266ef272	-	ol8_x86_64_baseos_latest
	cups-2.2.6-66.el8_10.src.rpm	23e78e973f3286a96da4945ee0966e785c135c88e76524a63830f536266ef272	-	ol8_x86_64_u10_baseos_patch
	cups-2.2.6-66.el8_10.x86_64.rpm	564a9edf551a535529688016363ff117d499f058041d846b3ae5419312f11c5a	-	ol8_x86_64_appstream
	cups-client-2.2.6-66.el8_10.x86_64.rpm	6de6bb0f51cb3f91ee72b3676fd2f7c0d343affdd6b724f2a4e502dc1abecfbd	-	ol8_x86_64_appstream
	cups-devel-2.2.6-66.el8_10.i686.rpm	4b731311d02e041756c57614917ce919c26b260fe237a60d7019f81b8706a4d9	-	ol8_x86_64_appstream
	cups-devel-2.2.6-66.el8_10.x86_64.rpm	4775adc9ab5bab04300c6b7340ea257f59d60e644a1b0700a691f21d6023441c	-	ol8_x86_64_appstream
	cups-filesystem-2.2.6-66.el8_10.noarch.rpm	bf1b7d63356fd8249611f5874b51e7d9651951e98dc86186d872907ea93e69ae	-	ol8_x86_64_appstream
	cups-ipptool-2.2.6-66.el8_10.x86_64.rpm	5c08c82c2035808f988628ce15dbd0082d88d372645dda0771f7f2db9c62fed3	-	ol8_x86_64_appstream
	cups-libs-2.2.6-66.el8_10.i686.rpm	b066741bd41721fe2a472cc1b9023401ec999a501ad04ab6d1ed17159cb6ffb0	-	ol8_x86_64_baseos_latest
	cups-libs-2.2.6-66.el8_10.i686.rpm	b066741bd41721fe2a472cc1b9023401ec999a501ad04ab6d1ed17159cb6ffb0	-	ol8_x86_64_u10_baseos_patch
	cups-libs-2.2.6-66.el8_10.x86_64.rpm	bfbce2674cb8e3cdb6f8dddfab3c2f1ac2424cdfad7855893969c9562ac2ed2a	-	ol8_x86_64_baseos_latest
	cups-libs-2.2.6-66.el8_10.x86_64.rpm	bfbce2674cb8e3cdb6f8dddfab3c2f1ac2424cdfad7855893969c9562ac2ed2a	-	ol8_x86_64_u10_baseos_patch
	cups-lpd-2.2.6-66.el8_10.x86_64.rpm	8d68d18d0e160af67921ed1ec56373e4f565d0056954e70a2724a3136b001a58	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team