CVE-2023-32360

Name	CVE-2023-32360
Description	An authentication issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. An unauthenticated user may be able to access recently printed documents.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
References	DLA-3594-1, ELA-978-1
Debian Bugs	1051953

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
cups (PTS)	jessie, jessie (lts)	1.7.5-11+deb8u12	fixed
	stretch (security)	2.2.1-8+deb9u8	vulnerable
	stretch (lts), stretch	2.2.1-8+deb9u12	fixed
	buster, buster (lts)	2.2.10-6+deb10u11	fixed
	buster (security)	2.2.10-6+deb10u10	fixed
	bullseye	2.3.3op2-3+deb11u8	fixed
	bullseye (security)	2.3.3op2-3+deb11u9	fixed
	bookworm	2.4.2-3+deb12u7	fixed
	bookworm (security)	2.4.2-3+deb12u8	fixed
	sid, trixie	2.4.10-2	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Origin	Debian Bugs
cups	source	jessie	1.7.5-11+deb8u12	ELA-978-1
cups	source	stretch	2.2.1-8+deb9u11	ELA-978-1
cups	source	buster	2.2.10-6+deb10u9	DLA-3594-1
cups	source	bullseye	2.3.3op2-3+deb11u4
cups	source	bookworm	2.4.2-3+deb12u2
cups	source	(unstable)	2.4.2-6		1051953

https://github.com/OpenPrinting/cups/commit/a0c8b9c9556882f00c68b9727a95a1b6d1452913 (v2.4.3)