CVE-2025-61915

Publication date 27 November 2025

Last updated 28 November 2025

Ubuntu priority

Why this priority?

Description

Local denial-of-service via cupsd.conf update and related issues

Status

Show unmaintained releases

Package	Ubuntu Release	Status
cups	25.10 questing	Fixed 2.4.12-0ubuntu3.3
	25.04 plucky	Fixed 2.4.12-0ubuntu1.4
	24.04 LTS noble	Fixed 2.4.7-1.2ubuntu7.7
	22.04 LTS jammy	Fixed 2.4.1op1-1ubuntu4.15
	20.04 LTS focal	Fixed 2.3.1-9ubuntu1.9+esm3
	18.04 LTS bionic	Fixed 2.2.7-1ubuntu2.10+esm9
	16.04 LTS xenial	Fixed 2.1.3-4ubuntu0.11+esm11

How can I get the fixes?
What do statuses mean?

Get expanded security coverage with Ubuntu Pro

Reduce your average CVE exposure time from 98 days to 1 day with expanded CVE patching, ten-years security maintenance and optional support for the full stack of open-source applications. Free for personal use.

Get Ubuntu Pro 30-day free trial

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-7897-1
CUPS vulnerability
27 November 2025

Other references

https://www.cve.org/CVERecord?id=CVE-2025-61915
https://github.com/OpenPrinting/cups/security/advisories/GHSA-hxm8-vfpq-jrfc