CVE-2020-10001

An input validation issue was addressed with improved memory handling. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave. A malicious application may be able to read restricted memory.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 24%
Affected Products (NVD)
VendorProductVersion
applemac_os_x
𝑥
< 11.1.0
debiandebian_linux
9.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
cups
bookworm
2.4.2-3+deb12u7
fixed
bookworm (security)
2.4.2-3+deb12u8
fixed
bullseye
2.3.3op2-3+deb11u8
fixed
bullseye (security)
2.3.3op2-3+deb11u9
fixed
sid
2.4.10-2
fixed
trixie
2.4.10-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
cups
bionic
Fixed 2.2.7-1ubuntu2.9
released
focal
Fixed 2.3.1-9ubuntu1.2
released
groovy
ignored
hirsute
ignored
impish
not-affected
jammy
not-affected
trusty
dne
xenial
Fixed 2.1.3-4ubuntu0.11+esm1
released
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
cups
suse enterprise desktop 15 SP2
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP3
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP4
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP5
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP6
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP7
2.2.7-3.20.1
fixed
suse enterprise sap 12 SP5
1.7.5-20.33.1
fixed
suse enterprise sap 15 SP2
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP3
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP4
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP5
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP6
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP7
2.2.7-3.20.1
fixed
suse enterprise server 12 SP3
1.7.5-20.33.1
fixed
suse enterprise server 12 SP5
1.7.5-20.33.1
fixed
suse enterprise server 15 SP2
2.2.7-3.20.1
fixed
suse enterprise server 15 SP3
2.2.7-3.20.1
fixed
suse enterprise server 15 SP4
2.2.7-3.20.1
fixed
suse enterprise server 15 SP5
2.2.7-3.20.1
fixed
suse enterprise server 15 SP6
2.2.7-3.20.1
fixed
suse enterprise server 15 SP7
2.2.7-3.20.1
fixed
cups-client
suse enterprise desktop 15 SP2
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP3
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP4
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP5
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP6
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP7
2.2.7-3.20.1
fixed
suse enterprise sap 12 SP5
1.7.5-20.33.1
fixed
suse enterprise sap 15 SP2
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP3
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP4
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP5
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP6
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP7
2.2.7-3.20.1
fixed
suse enterprise server 12 SP3
1.7.5-20.33.1
fixed
suse enterprise server 12 SP5
1.7.5-20.33.1
fixed
suse enterprise server 15 SP2
2.2.7-3.20.1
fixed
suse enterprise server 15 SP3
2.2.7-3.20.1
fixed
suse enterprise server 15 SP4
2.2.7-3.20.1
fixed
suse enterprise server 15 SP5
2.2.7-3.20.1
fixed
suse enterprise server 15 SP6
2.2.7-3.20.1
fixed
suse enterprise server 15 SP7
2.2.7-3.20.1
fixed
cups-config
suse enterprise desktop 15 SP2
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP3
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP4
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP5
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP6
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP7
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP2
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP3
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP4
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP5
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP6
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP7
2.2.7-3.20.1
fixed
suse enterprise server 15 SP2
2.2.7-3.20.1
fixed
suse enterprise server 15 SP3
2.2.7-3.20.1
fixed
suse enterprise server 15 SP4
2.2.7-3.20.1
fixed
suse enterprise server 15 SP5
2.2.7-3.20.1
fixed
suse enterprise server 15 SP6
2.2.7-3.20.1
fixed
suse enterprise server 15 SP7
2.2.7-3.20.1
fixed
cups-devel
suse enterprise desktop 15 SP2
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP3
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP4
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP5
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP6
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP7
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP2
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP3
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP4
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP5
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP6
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP7
2.2.7-3.20.1
fixed
suse enterprise server 15 SP2
2.2.7-3.20.1
fixed
suse enterprise server 15 SP3
2.2.7-3.20.1
fixed
suse enterprise server 15 SP4
2.2.7-3.20.1
fixed
suse enterprise server 15 SP5
2.2.7-3.20.1
fixed
suse enterprise server 15 SP6
2.2.7-3.20.1
fixed
suse enterprise server 15 SP7
2.2.7-3.20.1
fixed
cups-libs
suse enterprise sap 12 SP5
1.7.5-20.33.1
fixed
suse enterprise server 12 SP3
1.7.5-20.33.1
fixed
suse enterprise server 12 SP5
1.7.5-20.33.1
fixed
cups-libs-32bit
suse enterprise sap 12 SP5
1.7.5-20.33.1
fixed
suse enterprise server 12 SP3
1.7.5-20.33.1
fixed
suse enterprise server 12 SP5
1.7.5-20.33.1
fixed
libcups2
suse enterprise desktop 15 SP2
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP3
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP4
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP5
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP6
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP7
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP2
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP3
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP4
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP5
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP6
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP7
2.2.7-3.20.1
fixed
suse enterprise server 15 SP2
2.2.7-3.20.1
fixed
suse enterprise server 15 SP3
2.2.7-3.20.1
fixed
suse enterprise server 15 SP4
2.2.7-3.20.1
fixed
suse enterprise server 15 SP5
2.2.7-3.20.1
fixed
suse enterprise server 15 SP6
2.2.7-3.20.1
fixed
suse enterprise server 15 SP7
2.2.7-3.20.1
fixed
libcups2-32bit
suse enterprise desktop 15 SP2
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP3
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP4
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP2
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP3
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP4
2.2.7-3.20.1
fixed
suse enterprise server 15 SP2
2.2.7-3.20.1
fixed
suse enterprise server 15 SP3
2.2.7-3.20.1
fixed
suse enterprise server 15 SP4
2.2.7-3.20.1
fixed
libcupscgi1
suse enterprise desktop 15 SP2
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP3
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP4
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP5
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP6
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP7
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP2
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP3
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP4
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP5
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP6
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP7
2.2.7-3.20.1
fixed
suse enterprise server 15 SP2
2.2.7-3.20.1
fixed
suse enterprise server 15 SP3
2.2.7-3.20.1
fixed
suse enterprise server 15 SP4
2.2.7-3.20.1
fixed
suse enterprise server 15 SP5
2.2.7-3.20.1
fixed
suse enterprise server 15 SP6
2.2.7-3.20.1
fixed
suse enterprise server 15 SP7
2.2.7-3.20.1
fixed
libcupsimage2
suse enterprise desktop 15 SP2
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP3
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP4
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP5
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP6
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP7
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP2
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP3
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP4
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP5
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP6
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP7
2.2.7-3.20.1
fixed
suse enterprise server 15 SP2
2.2.7-3.20.1
fixed
suse enterprise server 15 SP3
2.2.7-3.20.1
fixed
suse enterprise server 15 SP4
2.2.7-3.20.1
fixed
suse enterprise server 15 SP5
2.2.7-3.20.1
fixed
suse enterprise server 15 SP6
2.2.7-3.20.1
fixed
suse enterprise server 15 SP7
2.2.7-3.20.1
fixed
libcupsmime1
suse enterprise desktop 15 SP2
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP3
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP4
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP5
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP6
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP7
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP2
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP3
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP4
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP5
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP6
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP7
2.2.7-3.20.1
fixed
suse enterprise server 15 SP2
2.2.7-3.20.1
fixed
suse enterprise server 15 SP3
2.2.7-3.20.1
fixed
suse enterprise server 15 SP4
2.2.7-3.20.1
fixed
suse enterprise server 15 SP5
2.2.7-3.20.1
fixed
suse enterprise server 15 SP6
2.2.7-3.20.1
fixed
suse enterprise server 15 SP7
2.2.7-3.20.1
fixed
libcupsppdc1
suse enterprise desktop 15 SP2
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP3
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP4
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP5
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP6
2.2.7-3.20.1
fixed
suse enterprise desktop 15 SP7
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP2
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP3
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP4
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP5
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP6
2.2.7-3.20.1
fixed
suse enterprise sap 15 SP7
2.2.7-3.20.1
fixed
suse enterprise server 15 SP2
2.2.7-3.20.1
fixed
suse enterprise server 15 SP3
2.2.7-3.20.1
fixed
suse enterprise server 15 SP4
2.2.7-3.20.1
fixed
suse enterprise server 15 SP5
2.2.7-3.20.1
fixed
suse enterprise server 15 SP6
2.2.7-3.20.1
fixed
suse enterprise server 15 SP7
2.2.7-3.20.1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
cups
RHEL 8
1:2.2.6-40.el8
fixed
cups-client
RHEL 8
1:2.2.6-40.el8
fixed
cups-devel
RHEL 8
1:2.2.6-40.el8
fixed
cups-filesystem
RHEL 8
1:2.2.6-40.el8
fixed
cups-ipptool
RHEL 8
1:2.2.6-40.el8
fixed
cups-libs
RHEL 8
1:2.2.6-40.el8
fixed
cups-lpd
RHEL 8
1:2.2.6-40.el8
fixed
Common Weakness Enumeration
References
https://lists.debian.org/debian-lts-announce/2021/10/msg00027.html
https://support.apple.com/en-us/HT212011
https://lists.debian.org/debian-lts-announce/2021/10/msg00027.html
https://support.apple.com/en-us/HT212011