OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to 2.4.17, a network-adjacent attacker can send a crafted SNMP response to the CUPS SNMP backend that causes an out-of-bounds read of up to 176 bytes past a stack buffer. The leaked memory is converted from UTF-16 to UTF-8 and stored as printer supply description strings, which are subsequently visible to authenticated users via IPP Get-Printer-Attributes responses and the CUPS web interface. This vulnerability is fixed in 2.4.17.
{
"cwe_ids": [
"CWE-125",
"CWE-200"
],
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/41xxx/CVE-2026-41079.json",
"cna_assigner": "GitHub_M"
}{
"source": [
"CPE_RANGE",
"REFERENCES"
],
"cpe": "cpe:2.3:a:openprinting:cups:*:*:*:*:*:*:*:*",
"extracted_events": [
{
"introduced": "0"
},
{
"fixed": "2.4.17"
}
]
}"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-41079.json"
"2026-07-15T00:59:06Z"
[
{
"deprecated": false,
"signature_type": "Function",
"source": "https://github.com/openprinting/cups/commit/d7fe0f521ff3b24676511e747b058362b9a20737",
"digest": {
"length": 4611.0,
"function_hash": "139478236150236973676429240608482836692"
},
"signature_version": "v1",
"target": {
"function": "asn1_decode_snmp",
"file": "cups/snmp.c"
},
"id": "CVE-2026-41079-167dcd5c"
},
{
"deprecated": false,
"signature_type": "Line",
"source": "https://github.com/openprinting/cups/commit/d7fe0f521ff3b24676511e747b058362b9a20737",
"digest": {
"line_hashes": [
"142605659535343133086053848345165409981",
"41400701692376671294964251970872873633",
"177549760049337598397549512201626783737",
"17800583178677705739773838223258436542",
"248574522777974544255429619641728581580",
"100701576699253069789653316129563734008"
],
"threshold": 0.9
},
"signature_version": "v1",
"target": {
"file": "cups/snmp-private.h"
},
"id": "CVE-2026-41079-23c7c24b"
},
{
"deprecated": false,
"signature_type": "Function",
"source": "https://github.com/openprinting/cups/commit/b7c2525a885f528d243c3a92197ca99609b3f080",
"digest": {
"length": 4611.0,
"function_hash": "139478236150236973676429240608482836692"
},
"signature_version": "v1",
"target": {
"function": "asn1_decode_snmp",
"file": "cups/snmp.c"
},
"id": "CVE-2026-41079-5b48ebcc"
},
{
"deprecated": false,
"signature_type": "Line",
"source": "https://github.com/openprinting/cups/commit/b7c2525a885f528d243c3a92197ca99609b3f080",
"digest": {
"line_hashes": [
"118376284056168875892261006983274243166",
"41400701692376671294964251970872873633",
"177549760049337598397549512201626783737",
"17800583178677705739773838223258436542",
"248574522777974544255429619641728581580",
"100701576699253069789653316129563734008"
],
"threshold": 0.9
},
"signature_version": "v1",
"target": {
"file": "cups/snmp-private.h"
},
"id": "CVE-2026-41079-8928fa7f"
},
{
"deprecated": false,
"signature_type": "Line",
"source": "https://github.com/openprinting/cups/commit/b7c2525a885f528d243c3a92197ca99609b3f080",
"digest": {
"line_hashes": [
"166276563353198449009233696647384287021",
"169650972697362308899887669435268294765",
"12513196055066387116855070804263884807",
"122619627696558913183951075454226223344",
"31106943785990830194052547364752321353",
"286378340259777258738265146932651939858",
"30451102619693756032559788951225355020",
"58756482329269910546030014756761050401"
],
"threshold": 0.9
},
"signature_version": "v1",
"target": {
"file": "cups/snmp.c"
},
"id": "CVE-2026-41079-90b7ddde"
},
{
"deprecated": false,
"signature_type": "Line",
"source": "https://github.com/openprinting/cups/commit/4bd119bbec57885993ab583c79ee5c70be77a7c2",
"digest": {
"line_hashes": [
"299893045949588976139623539753662255133",
"250277918484656917067460661332154754845",
"180926957210100798147957675817561822731",
"328371740011098925653118821188853713521",
"12965106556956194427173249060981454822",
"80893087353804966362527825391315791552",
"176662638266879331245245720019172492324",
"246157329180559496201844320315879132350"
],
"threshold": 0.9
},
"signature_version": "v1",
"target": {
"file": "cups/cups.h"
},
"id": "CVE-2026-41079-c5b2088d"
},
{
"deprecated": false,
"signature_type": "Line",
"source": "https://github.com/openprinting/cups/commit/d7fe0f521ff3b24676511e747b058362b9a20737",
"digest": {
"line_hashes": [
"6761891805421019019901434157050162575",
"169650972697362308899887669435268294765",
"12513196055066387116855070804263884807",
"122619627696558913183951075454226223344",
"31106943785990830194052547364752321353",
"286378340259777258738265146932651939858",
"30451102619693756032559788951225355020",
"58756482329269910546030014756761050401"
],
"threshold": 0.9
},
"signature_version": "v1",
"target": {
"file": "cups/snmp.c"
},
"id": "CVE-2026-41079-d7f10b87"
}
]