Out of Bounds Read/Write Vulnerability in CUPS-Filters and libcupsfilters
CVE-2025-57812

3.7LOW

Key Information:

Vendor: Openprinting
Status: Libcupsfilters
Vendor: CVE Published:; 12 November 2025

🔔 Create Openprinting Vulnerability Alert

What is CVE-2025-57812?

CVE-2025-57812 is a vulnerability found in the CUPS-Filters and libcupsfilters libraries, which are integral components of the open-source CUPS (Common UNIX Printing System). CUPS serves as a standardized printing system for UNIX-like operating systems, allowing computers to act as print servers. This particular vulnerability is categorized as an out-of-bounds read/write issue specifically within the imagetoraster filter, which is responsible for converting image files (such as TIFF) into a raster format suitable for printers.

The flaw arises from improper handling of pixel buffer sizes during TIFF image processing. When a print job containing a specially crafted TIFF file is submitted, an attacker can manipulate the bytes-per-pixel value, which leads to memory outside the allocated buffer being accessed and processed. This could allow an attacker to influence the behavior of the printing system in potentially harmful ways, including unauthorized information disclosure or system instability.

Potential impact of CVE-2025-57812

Unauthorized Memory Access: The core issue allows attackers to manipulate memory buffers, which could lead to data corruption or unintentional leakage of sensitive information. If exploited, this vulnerability could enable the reading of confidential data from other processes or unallocated memory regions.
Denial of Service: The vulnerability could be triggered through malformed print jobs, possibly leading to crashes or instability in the printing service. This disruption can significantly impact organizational workflows, especially those reliant on printing services for critical operations.
Potential for Remote Code Execution: Although exploitation in the wild has not been observed, the nature of the vulnerability and the ability to craft specific print jobs raises concerns about the potential for remote code execution. If successfully exploited, this could allow attackers to gain control over the print server, leading to broader system compromise within the affected network.