The hotfix release brings fix for installation process of localized templates and CUPS web UI home pages.

Enjoy!

The release 2.4.13 brings two CVE fixes - fix for important CVE-2025-58060 and fix for moderate CVE-2025-58364, together with several bug fixes.

The release includes a new feature - new attribute for printer and job objects - print-as-raster - which allows enforce rasterization of the file for IPP Everywhere/AirPrint printers, which supports PDF and raster document formats. The feature is useful for working around internal PDF issues in the printer firmware, for example missing diacritic when printing a PDF.

The detailed list of changes is available in CHANGES.md.

Enjoy the release!

The last planned release of CUPS 2.4.x series (the next will be 2.5.x series) contains several enhancements among set of bug fixes, such following cryptographic policies when using GnuTLS crypto provider and possibility to opt-out from this behavior, logging job debugging history if print queue backends fails, or raising alerts for certificate issues in IPPS backend.

The detailed list of changes is available in CHANGES.md.

Enjoy the new release!

CUPS 2.4.11 brings several bug fixes regarding IPP response validation, processing PPD values, Web UI support (checkbox support, modifying printers) and others fixes.

Detailed list of changes is available in CHANGES.md

Enjoy!

CUPS 2.4.10 brings two fixes:

• Fixed error handling when reading a mixed 1setOf attribute.
• Fixed scheduler start if there is only domain socket to listen on (Issue #985)

which the latter is fix for regression after fix for CVE-2024-35235 in scenarios where is no other listeners in cupsd.conf than domain socket created on demand by systemd, launchd or upstart.

Enjoy!

CUPS 2.4.9 brings security fix for CVE-2024-35235 and several bug fixes regarding CUPS Web User Interface, PPD generation and HTTP protocol implementation.

Detailed list of changes is available in CHANGES.md.

Enjoy!

CUPS 2.4.8 brings many bug fixes which aggregated over the last half a year. It brings the important fix for race conditions and errors which can happen when installing permanent IPP Everywhere printer, support for PAM modules password-auth and system-auth and new option for lpstat which can show only the successful jobs.

Detailed list of changes is available in CHANGES.md.

Enjoy!

CUPS 2.4.7 is released to ship the fix for CVE-2023-4504 and several other changes, among them it is adding OpenSSL support for cupsHashData function and bug fixes.

Detailed list:

• CVE-2023-4504 - Fixed Heap-based buffer overflow when reading Postscript
  in PPD files
• Added OpenSSL support for cupsHashData (Issue #762)
• Fixed delays in lpd backend (Issue #741)
• Fixed extensive logging in scheduler (Issue #604)
• Fixed hanging of lpstat on IBM AIX (Issue #773)
• Fixed hanging of lpstat on Solaris (Issue #156)
• Fixed printing to stderr if we can't open cups-files.conf (Issue #777)
• Fixed purging job files via cancel -x (Issue #742)
• Fixed RFC 1179 port reserving behavior in LPD backend (Issue #743)
• Fixed a bug in the PPD command interpretation code (Issue #768)

Enjoy the new release!

CUPS 2.4.6 is released to ship the fix for the latest CVE - CVE-2023-34241 - and two other bug fixes.

Detailed list:

• Fix linking error on old MacOS (Issue #715)
• Fix printing multiple files on specific printers (Issue #643)
• Fix use-after-free when logging warnings in case of failures in cupsdAcceptClient() (fixes CVE-2023-34241)

CUPS 2.4.5 is a hotfix release for a bug which corrupted locally saved certificates, which broke secured printing via TLS after the first print job.

We're sorry for the inconvenience and enjoy the hotfix!