OPENSUSE-SU-2026:20858-1
Vulnerability from csaf_opensuse - Published: 2026-06-01 16:17 - Updated: 2026-06-01 16:17Summary
Security update for hplip
Severity
Critical
Notes
Title of the patch: Security update for hplip
Description of the patch: This update for hplip fixes the following issues:
Changes in hplip:
- Update to HPLIP 3.26.4
* CVE-2026-8631: Fixed privileges escalation and/or arbitrary code execution via an integer overflow in the hpcups processing path (bsc#1266023)
* CVE-2026-8632: Fixed privileges escalation and/or arbitrary code execution via operating system command injection (bsc#1266024)
- Add support for the following new printers:
* HP LaserJet Pro MFP 3106sdw
* HP LaserJet Pro MFP 3105sdw
* HP Envy 6500e series
* HP Envy 6500 series
* HP OfficeJet Pro 9730 Series
* HP OfficeJet Pro 9730e Series
* HP OfficeJet Pro 9720 Series
* HP OfficeJet Pro 9720e Series
* HP OfficeJet Pro 8130e All-in-One series
* HP OfficeJet Pro 8130 All-in-One series
* HP OfficeJet 8130e All-in-One series
* HP OfficeJet 8130 All-in-One series
* HP OfficeJet Pro 8120e All-in-One series
* HP OfficeJet Pro 8120 All-in-One series
* HP OfficeJet 8120e All-in-One series
* HP OfficeJet 8120 All-in-One series
* HP DeskJet Ink Advantage ultra 5800 All-in-One Printer series
* HP DeskJet Ink Advantage ultra 5100 All-in-One Printer series
* HP DeskJet 4300e All-in-One Printer series
* HP DeskJet Ink Advantage 4300 All-in-One Printer series
* HP DeskJet 4300 All-in-One Printer series
* HP DeskJet 2900e All-in-One Printer series
* HP DeskJet Ink Advantage 2900 All-in-One Printer series
* HP DeskJet 2900 All-in-One Printer series
- Update to HPLIP 3.25.8
- Added support for the following new Printers:
* HP LaserJet Enterprise Flow MFP 8601z
* HP LaserJet Enterprise 5501
* HP LaserJet Enterprise MFP 5601dn
* HP LaserJet Enterprise 6500dn
* HP LaserJet Enterprise 5501n
* HP LaserJet Enterprise MFP 5601
* HP LaserJet Enterprise 6500
* HP LaserJet Enterprise 5502dn
* HP LaserJet Enterprise MFP 5602dn
* HP LaserJet Enterprise 6500n
* HP LaserJet Enterprise 5502
* HP LaserJet Enterprise MFP 5602f
* HP LaserJet Enterprise 6501dn
* HP LaserJet Enterprise X50452dn
* HP LaserJet Enterprise Flow MFP 5602zfw
* HP LaserJet Enterprise 6501
* HP LaserJet Enterprise X50452
* HP LaserJet Enterprise MFP 5602
* HP LaserJet Enterprise X60257dn
* HP LaserJet Enterprise MFP X53052dn
* HP LaserJet Enterprise Flow MFP X530
* HP LaserJet Enterprise X60257
* HP LaserJet Enterprise MFP X53052
* HP LaserJet Enterprise X60357dn
* HP LaserJet Enterprise X60357
* HP LaserJet Enterprise MFP 6600dn
* HP LaserJet Enterprise Flow MFP 6600zfw
* HP LaserJet Enterprise MFP 6600
* HP LaserJet Enterprise Flow MFP 6600zfsw
* HP LaserJet Enterprise MFP X62757dn
* HP LaserJet Enterprise Flow MFP X62757zs
* HP LaserJet Enterprise MFP X62757
* DEX D50452dn
* DEX MFP D53052dn
- Fix handling of readfp() and read_filke() for ConfigParser objects,
avoiding confusing error messages (lp#2139771)
- Fix compiler warnings on SLE15
- Fix "Found No Section" error with python (lp#2095776)
- Fix PPD lookup by moving PPDs from manufacturer-PPDs/hplip-fax
to manufacturer-PPDs/hplip/fax etc (boo#1257529)
- Move more utilities from hplip-utils to hplip-base.
* hplip-base now contains all utilities that are not totally useless
and can run without the Qt GUI.
- Update fix for support of new GPG key, as the key has now been
uploaded to GPG keyservers (lp#2120738)
- This fixes CVE-2025-43023 (bsc#1266031)
- Drop dependency on cups-ppdc. It isn't necessary, as PPD
generation on target system is done by cups-driverd.
- The old and outdated 'hpijs' driver support is finally dropped
(the 'hpcups' driver is the default driver since 2009)
so that there is no need for foomatic-filters (boo#1250481)
- Continue refactoring:
* move GUI tools to "hplip-utils" subpackage
* convert "hplip" into an empty metapackage that pulls in hplip-utils
and all drivers / PPDs (except hpijs PPDs).
- Refactor package structure:
* hplip: full set of utilities. Pulls in almost all subpackages
to deliver the "traditional" hplip experience
* hplip-base: small set of basic utilities that can be run
without GUI. Includes hp-probe and hp-plugin
* hplip-cups: minimal package for printing, without PPDs or
setup helpers
* hplip-sane: scanning support (unchanged)
* hplip-driver-hpcups: hpcups.drv for generating hpcups PPDs on
the fly (requires ppdc). The functionality of this package is
similar to the old (misnamed) "hplip-hpijs" package.
* hplip-driver-hpijs: hpijs.drv for generating PPDs for the deprecated
hpijs / foomatic_rip filter. Note that this functionality was not part of
the late hplip-hpijs package, because upstream hasn't ship foomatic PPDs
since hplip 3.17.11.
* hplip-ppds-{hpcups,hpps,postscript,hpijs,fax,plugin}: static PPD
files for different printer types.
hplip-ppds-hpcups is an alternative to hplip-driver-hpcups.
* libhplip0: shared library package, used by hplip-cups and
hplip-sane
* hplip-common: configuration files and directories used by
all hplip packages.
- Other spec file changes:
* Skip deprecated suse_update_desktop_file by default on TW
* Don't mess with sane configuration in udev rules
* Only the hpijs packages depend on foomatic-rip, which is only
provided by cups-filters-1.x. The other packages can be used
with cups-filters2.
* Remove Obsoletes: for ancient predecessor packages
* Remove outdated comments from spec file
* Shorten package descriptions
* Fix a couple of rpmlint issues
- Fix printer probing using avahi (lp#2120947)
Patchnames: openSUSE-Leap-16.0-packagehub-288
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
35 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-common-3.26.4-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-driver-hpcups-3.26.4-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-ppds-fax-3.26.4-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-ppds-hpcups-3.26.4-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-ppds-hpps-3.26.4-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-ppds-plugin-3.26.4-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-ppds-postscript-3.26.4-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
9.8 (Critical)
Affected products
Recommended
35 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-common-3.26.4-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-driver-hpcups-3.26.4-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-ppds-fax-3.26.4-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-ppds-hpcups-3.26.4-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-ppds-hpps-3.26.4-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-ppds-plugin-3.26.4-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-ppds-postscript-3.26.4-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
7.8 (High)
Affected products
Recommended
35 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-common-3.26.4-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-driver-hpcups-3.26.4-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-ppds-fax-3.26.4-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-ppds-hpcups-3.26.4-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-ppds-hpps-3.26.4-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-ppds-plugin-3.26.4-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-ppds-postscript-3.26.4-bp160.1.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
16 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for hplip",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for hplip fixes the following issues:\n\nChanges in hplip:\n\n- Update to HPLIP 3.26.4\n * CVE-2026-8631: Fixed privileges escalation and/or arbitrary code execution via an integer overflow in the hpcups processing path (bsc#1266023)\n * CVE-2026-8632: Fixed privileges escalation and/or arbitrary code execution via operating system command injection (bsc#1266024)\n\n- Add support for the following new printers:\n\n * HP LaserJet Pro MFP 3106sdw\n * HP LaserJet Pro MFP 3105sdw\n * HP Envy 6500e series\n * HP Envy 6500 series\n * HP OfficeJet Pro 9730 Series\n * HP OfficeJet Pro 9730e Series\n * HP OfficeJet Pro 9720 Series\n * HP OfficeJet Pro 9720e Series\n * HP OfficeJet Pro 8130e All-in-One series\n * HP OfficeJet Pro 8130 All-in-One series\n * HP OfficeJet 8130e All-in-One series\n * HP OfficeJet 8130 All-in-One series\n * HP OfficeJet Pro 8120e All-in-One series\n * HP OfficeJet Pro 8120 All-in-One series\n * HP OfficeJet 8120e All-in-One series\n * HP OfficeJet 8120 All-in-One series\n * HP DeskJet Ink Advantage ultra 5800 All-in-One Printer series\n * HP DeskJet Ink Advantage ultra 5100 All-in-One Printer series\n * HP DeskJet 4300e All-in-One Printer series\n * HP DeskJet Ink Advantage 4300 All-in-One Printer series\n * HP DeskJet 4300 All-in-One Printer series\n * HP DeskJet 2900e All-in-One Printer series\n * HP DeskJet Ink Advantage 2900 All-in-One Printer series\n * HP DeskJet 2900 All-in-One Printer series\n\n- Update to HPLIP 3.25.8\n\n- Added support for the following new Printers:\n * HP LaserJet Enterprise Flow MFP 8601z\n * HP LaserJet Enterprise 5501\n * HP LaserJet Enterprise MFP 5601dn\n * HP LaserJet Enterprise 6500dn\n * HP LaserJet Enterprise 5501n\n * HP LaserJet Enterprise MFP 5601\n * HP LaserJet Enterprise 6500\n * HP LaserJet Enterprise 5502dn\n * HP LaserJet Enterprise MFP 5602dn\n * HP LaserJet Enterprise 6500n\n * HP LaserJet Enterprise 5502\n * HP LaserJet Enterprise MFP 5602f\n * HP LaserJet Enterprise 6501dn\n * HP LaserJet Enterprise X50452dn\n * HP LaserJet Enterprise Flow MFP 5602zfw\n * HP LaserJet Enterprise 6501\n * HP LaserJet Enterprise X50452\n * HP LaserJet Enterprise MFP 5602\n * HP LaserJet Enterprise X60257dn\n * HP LaserJet Enterprise MFP X53052dn\n * HP LaserJet Enterprise Flow MFP X530\n * HP LaserJet Enterprise X60257\n * HP LaserJet Enterprise MFP X53052\n * HP LaserJet Enterprise X60357dn\n * HP LaserJet Enterprise X60357\n * HP LaserJet Enterprise MFP 6600dn\n * HP LaserJet Enterprise Flow MFP 6600zfw\n * HP LaserJet Enterprise MFP 6600\n * HP LaserJet Enterprise Flow MFP 6600zfsw\n * HP LaserJet Enterprise MFP X62757dn\n * HP LaserJet Enterprise Flow MFP X62757zs\n * HP LaserJet Enterprise MFP X62757\n * DEX D50452dn\n * DEX MFP D53052dn\n\n- Fix handling of readfp() and read_filke() for ConfigParser objects,\n avoiding confusing error messages (lp#2139771)\n- Fix compiler warnings on SLE15\n- Fix \"Found No Section\" error with python (lp#2095776)\n\n- Fix PPD lookup by moving PPDs from manufacturer-PPDs/hplip-fax\n to manufacturer-PPDs/hplip/fax etc (boo#1257529)\n\n- Move more utilities from hplip-utils to hplip-base.\n * hplip-base now contains all utilities that are not totally useless\n and can run without the Qt GUI.\n\n- Update fix for support of new GPG key, as the key has now been\n uploaded to GPG keyservers (lp#2120738)\n- This fixes CVE-2025-43023 (bsc#1266031)\n\n- Drop dependency on cups-ppdc. It isn\u0027t necessary, as PPD\n generation on target system is done by cups-driverd.\n\n- The old and outdated \u0027hpijs\u0027 driver support is finally dropped\n (the \u0027hpcups\u0027 driver is the default driver since 2009)\n so that there is no need for foomatic-filters (boo#1250481)\n\n- Continue refactoring:\n * move GUI tools to \"hplip-utils\" subpackage\n * convert \"hplip\" into an empty metapackage that pulls in hplip-utils\n and all drivers / PPDs (except hpijs PPDs).\n\n- Refactor package structure:\n * hplip: full set of utilities. Pulls in almost all subpackages\n to deliver the \"traditional\" hplip experience\n * hplip-base: small set of basic utilities that can be run\n without GUI. Includes hp-probe and hp-plugin\n * hplip-cups: minimal package for printing, without PPDs or\n setup helpers\n * hplip-sane: scanning support (unchanged)\n * hplip-driver-hpcups: hpcups.drv for generating hpcups PPDs on\n the fly (requires ppdc). The functionality of this package is\n similar to the old (misnamed) \"hplip-hpijs\" package.\n * hplip-driver-hpijs: hpijs.drv for generating PPDs for the deprecated\n hpijs / foomatic_rip filter. Note that this functionality was not part of\n the late hplip-hpijs package, because upstream hasn\u0027t ship foomatic PPDs\n since hplip 3.17.11.\n * hplip-ppds-{hpcups,hpps,postscript,hpijs,fax,plugin}: static PPD\n files for different printer types.\n hplip-ppds-hpcups is an alternative to hplip-driver-hpcups.\n * libhplip0: shared library package, used by hplip-cups and\n hplip-sane\n * hplip-common: configuration files and directories used by\n all hplip packages.\n\n- Other spec file changes:\n * Skip deprecated suse_update_desktop_file by default on TW\n * Don\u0027t mess with sane configuration in udev rules\n * Only the hpijs packages depend on foomatic-rip, which is only\n provided by cups-filters-1.x. The other packages can be used\n with cups-filters2.\n * Remove Obsoletes: for ancient predecessor packages\n * Remove outdated comments from spec file\n * Shorten package descriptions\n * Fix a couple of rpmlint issues\n\n- Fix printer probing using avahi (lp#2120947)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Leap-16.0-packagehub-288",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_20858-1.json"
},
{
"category": "self",
"summary": "SUSE Bug 1250481",
"url": "https://bugzilla.suse.com/1250481"
},
{
"category": "self",
"summary": "SUSE Bug 1257529",
"url": "https://bugzilla.suse.com/1257529"
},
{
"category": "self",
"summary": "SUSE Bug 1266023",
"url": "https://bugzilla.suse.com/1266023"
},
{
"category": "self",
"summary": "SUSE Bug 1266024",
"url": "https://bugzilla.suse.com/1266024"
},
{
"category": "self",
"summary": "SUSE Bug 1266031",
"url": "https://bugzilla.suse.com/1266031"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-43023 page",
"url": "https://www.suse.com/security/cve/CVE-2025-43023/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-8631 page",
"url": "https://www.suse.com/security/cve/CVE-2026-8631/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-8632 page",
"url": "https://www.suse.com/security/cve/CVE-2026-8632/"
}
],
"title": "Security update for hplip",
"tracking": {
"current_release_date": "2026-06-01T16:17:43Z",
"generator": {
"date": "2026-06-01T16:17:43Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:20858-1",
"initial_release_date": "2026-06-01T16:17:43Z",
"revision_history": [
{
"date": "2026-06-01T16:17:43Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "hplip-3.26.4-bp160.1.1.aarch64",
"product": {
"name": "hplip-3.26.4-bp160.1.1.aarch64",
"product_id": "hplip-3.26.4-bp160.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "hplip-base-3.26.4-bp160.1.1.aarch64",
"product": {
"name": "hplip-base-3.26.4-bp160.1.1.aarch64",
"product_id": "hplip-base-3.26.4-bp160.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "hplip-cups-3.26.4-bp160.1.1.aarch64",
"product": {
"name": "hplip-cups-3.26.4-bp160.1.1.aarch64",
"product_id": "hplip-cups-3.26.4-bp160.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "hplip-devel-3.26.4-bp160.1.1.aarch64",
"product": {
"name": "hplip-devel-3.26.4-bp160.1.1.aarch64",
"product_id": "hplip-devel-3.26.4-bp160.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "hplip-sane-3.26.4-bp160.1.1.aarch64",
"product": {
"name": "hplip-sane-3.26.4-bp160.1.1.aarch64",
"product_id": "hplip-sane-3.26.4-bp160.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "hplip-utils-3.26.4-bp160.1.1.aarch64",
"product": {
"name": "hplip-utils-3.26.4-bp160.1.1.aarch64",
"product_id": "hplip-utils-3.26.4-bp160.1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libhplip0-3.26.4-bp160.1.1.aarch64",
"product": {
"name": "libhplip0-3.26.4-bp160.1.1.aarch64",
"product_id": "libhplip0-3.26.4-bp160.1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "hplip-common-3.26.4-bp160.1.1.noarch",
"product": {
"name": "hplip-common-3.26.4-bp160.1.1.noarch",
"product_id": "hplip-common-3.26.4-bp160.1.1.noarch"
}
},
{
"category": "product_version",
"name": "hplip-driver-hpcups-3.26.4-bp160.1.1.noarch",
"product": {
"name": "hplip-driver-hpcups-3.26.4-bp160.1.1.noarch",
"product_id": "hplip-driver-hpcups-3.26.4-bp160.1.1.noarch"
}
},
{
"category": "product_version",
"name": "hplip-ppds-fax-3.26.4-bp160.1.1.noarch",
"product": {
"name": "hplip-ppds-fax-3.26.4-bp160.1.1.noarch",
"product_id": "hplip-ppds-fax-3.26.4-bp160.1.1.noarch"
}
},
{
"category": "product_version",
"name": "hplip-ppds-hpcups-3.26.4-bp160.1.1.noarch",
"product": {
"name": "hplip-ppds-hpcups-3.26.4-bp160.1.1.noarch",
"product_id": "hplip-ppds-hpcups-3.26.4-bp160.1.1.noarch"
}
},
{
"category": "product_version",
"name": "hplip-ppds-hpps-3.26.4-bp160.1.1.noarch",
"product": {
"name": "hplip-ppds-hpps-3.26.4-bp160.1.1.noarch",
"product_id": "hplip-ppds-hpps-3.26.4-bp160.1.1.noarch"
}
},
{
"category": "product_version",
"name": "hplip-ppds-plugin-3.26.4-bp160.1.1.noarch",
"product": {
"name": "hplip-ppds-plugin-3.26.4-bp160.1.1.noarch",
"product_id": "hplip-ppds-plugin-3.26.4-bp160.1.1.noarch"
}
},
{
"category": "product_version",
"name": "hplip-ppds-postscript-3.26.4-bp160.1.1.noarch",
"product": {
"name": "hplip-ppds-postscript-3.26.4-bp160.1.1.noarch",
"product_id": "hplip-ppds-postscript-3.26.4-bp160.1.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "hplip-3.26.4-bp160.1.1.ppc64le",
"product": {
"name": "hplip-3.26.4-bp160.1.1.ppc64le",
"product_id": "hplip-3.26.4-bp160.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "hplip-base-3.26.4-bp160.1.1.ppc64le",
"product": {
"name": "hplip-base-3.26.4-bp160.1.1.ppc64le",
"product_id": "hplip-base-3.26.4-bp160.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "hplip-cups-3.26.4-bp160.1.1.ppc64le",
"product": {
"name": "hplip-cups-3.26.4-bp160.1.1.ppc64le",
"product_id": "hplip-cups-3.26.4-bp160.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "hplip-devel-3.26.4-bp160.1.1.ppc64le",
"product": {
"name": "hplip-devel-3.26.4-bp160.1.1.ppc64le",
"product_id": "hplip-devel-3.26.4-bp160.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "hplip-sane-3.26.4-bp160.1.1.ppc64le",
"product": {
"name": "hplip-sane-3.26.4-bp160.1.1.ppc64le",
"product_id": "hplip-sane-3.26.4-bp160.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "hplip-utils-3.26.4-bp160.1.1.ppc64le",
"product": {
"name": "hplip-utils-3.26.4-bp160.1.1.ppc64le",
"product_id": "hplip-utils-3.26.4-bp160.1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libhplip0-3.26.4-bp160.1.1.ppc64le",
"product": {
"name": "libhplip0-3.26.4-bp160.1.1.ppc64le",
"product_id": "libhplip0-3.26.4-bp160.1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "hplip-3.26.4-bp160.1.1.s390x",
"product": {
"name": "hplip-3.26.4-bp160.1.1.s390x",
"product_id": "hplip-3.26.4-bp160.1.1.s390x"
}
},
{
"category": "product_version",
"name": "hplip-base-3.26.4-bp160.1.1.s390x",
"product": {
"name": "hplip-base-3.26.4-bp160.1.1.s390x",
"product_id": "hplip-base-3.26.4-bp160.1.1.s390x"
}
},
{
"category": "product_version",
"name": "hplip-cups-3.26.4-bp160.1.1.s390x",
"product": {
"name": "hplip-cups-3.26.4-bp160.1.1.s390x",
"product_id": "hplip-cups-3.26.4-bp160.1.1.s390x"
}
},
{
"category": "product_version",
"name": "hplip-devel-3.26.4-bp160.1.1.s390x",
"product": {
"name": "hplip-devel-3.26.4-bp160.1.1.s390x",
"product_id": "hplip-devel-3.26.4-bp160.1.1.s390x"
}
},
{
"category": "product_version",
"name": "hplip-sane-3.26.4-bp160.1.1.s390x",
"product": {
"name": "hplip-sane-3.26.4-bp160.1.1.s390x",
"product_id": "hplip-sane-3.26.4-bp160.1.1.s390x"
}
},
{
"category": "product_version",
"name": "hplip-utils-3.26.4-bp160.1.1.s390x",
"product": {
"name": "hplip-utils-3.26.4-bp160.1.1.s390x",
"product_id": "hplip-utils-3.26.4-bp160.1.1.s390x"
}
},
{
"category": "product_version",
"name": "libhplip0-3.26.4-bp160.1.1.s390x",
"product": {
"name": "libhplip0-3.26.4-bp160.1.1.s390x",
"product_id": "libhplip0-3.26.4-bp160.1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "hplip-3.26.4-bp160.1.1.x86_64",
"product": {
"name": "hplip-3.26.4-bp160.1.1.x86_64",
"product_id": "hplip-3.26.4-bp160.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "hplip-base-3.26.4-bp160.1.1.x86_64",
"product": {
"name": "hplip-base-3.26.4-bp160.1.1.x86_64",
"product_id": "hplip-base-3.26.4-bp160.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "hplip-cups-3.26.4-bp160.1.1.x86_64",
"product": {
"name": "hplip-cups-3.26.4-bp160.1.1.x86_64",
"product_id": "hplip-cups-3.26.4-bp160.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "hplip-devel-3.26.4-bp160.1.1.x86_64",
"product": {
"name": "hplip-devel-3.26.4-bp160.1.1.x86_64",
"product_id": "hplip-devel-3.26.4-bp160.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "hplip-sane-3.26.4-bp160.1.1.x86_64",
"product": {
"name": "hplip-sane-3.26.4-bp160.1.1.x86_64",
"product_id": "hplip-sane-3.26.4-bp160.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "hplip-utils-3.26.4-bp160.1.1.x86_64",
"product": {
"name": "hplip-utils-3.26.4-bp160.1.1.x86_64",
"product_id": "hplip-utils-3.26.4-bp160.1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libhplip0-3.26.4-bp160.1.1.x86_64",
"product": {
"name": "libhplip0-3.26.4-bp160.1.1.x86_64",
"product_id": "libhplip0-3.26.4-bp160.1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 16.0",
"product": {
"name": "openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0"
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-3.26.4-bp160.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.aarch64"
},
"product_reference": "hplip-3.26.4-bp160.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-3.26.4-bp160.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.ppc64le"
},
"product_reference": "hplip-3.26.4-bp160.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-3.26.4-bp160.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.s390x"
},
"product_reference": "hplip-3.26.4-bp160.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-3.26.4-bp160.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.x86_64"
},
"product_reference": "hplip-3.26.4-bp160.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-base-3.26.4-bp160.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.aarch64"
},
"product_reference": "hplip-base-3.26.4-bp160.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-base-3.26.4-bp160.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.ppc64le"
},
"product_reference": "hplip-base-3.26.4-bp160.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-base-3.26.4-bp160.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.s390x"
},
"product_reference": "hplip-base-3.26.4-bp160.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-base-3.26.4-bp160.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.x86_64"
},
"product_reference": "hplip-base-3.26.4-bp160.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-common-3.26.4-bp160.1.1.noarch as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-common-3.26.4-bp160.1.1.noarch"
},
"product_reference": "hplip-common-3.26.4-bp160.1.1.noarch",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-cups-3.26.4-bp160.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.aarch64"
},
"product_reference": "hplip-cups-3.26.4-bp160.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-cups-3.26.4-bp160.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.ppc64le"
},
"product_reference": "hplip-cups-3.26.4-bp160.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-cups-3.26.4-bp160.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.s390x"
},
"product_reference": "hplip-cups-3.26.4-bp160.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-cups-3.26.4-bp160.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.x86_64"
},
"product_reference": "hplip-cups-3.26.4-bp160.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-devel-3.26.4-bp160.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.aarch64"
},
"product_reference": "hplip-devel-3.26.4-bp160.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-devel-3.26.4-bp160.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.ppc64le"
},
"product_reference": "hplip-devel-3.26.4-bp160.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-devel-3.26.4-bp160.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.s390x"
},
"product_reference": "hplip-devel-3.26.4-bp160.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-devel-3.26.4-bp160.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.x86_64"
},
"product_reference": "hplip-devel-3.26.4-bp160.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-driver-hpcups-3.26.4-bp160.1.1.noarch as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-driver-hpcups-3.26.4-bp160.1.1.noarch"
},
"product_reference": "hplip-driver-hpcups-3.26.4-bp160.1.1.noarch",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-ppds-fax-3.26.4-bp160.1.1.noarch as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-ppds-fax-3.26.4-bp160.1.1.noarch"
},
"product_reference": "hplip-ppds-fax-3.26.4-bp160.1.1.noarch",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-ppds-hpcups-3.26.4-bp160.1.1.noarch as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-ppds-hpcups-3.26.4-bp160.1.1.noarch"
},
"product_reference": "hplip-ppds-hpcups-3.26.4-bp160.1.1.noarch",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-ppds-hpps-3.26.4-bp160.1.1.noarch as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-ppds-hpps-3.26.4-bp160.1.1.noarch"
},
"product_reference": "hplip-ppds-hpps-3.26.4-bp160.1.1.noarch",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-ppds-plugin-3.26.4-bp160.1.1.noarch as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-ppds-plugin-3.26.4-bp160.1.1.noarch"
},
"product_reference": "hplip-ppds-plugin-3.26.4-bp160.1.1.noarch",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-ppds-postscript-3.26.4-bp160.1.1.noarch as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-ppds-postscript-3.26.4-bp160.1.1.noarch"
},
"product_reference": "hplip-ppds-postscript-3.26.4-bp160.1.1.noarch",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-sane-3.26.4-bp160.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.aarch64"
},
"product_reference": "hplip-sane-3.26.4-bp160.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-sane-3.26.4-bp160.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.ppc64le"
},
"product_reference": "hplip-sane-3.26.4-bp160.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-sane-3.26.4-bp160.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.s390x"
},
"product_reference": "hplip-sane-3.26.4-bp160.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-sane-3.26.4-bp160.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.x86_64"
},
"product_reference": "hplip-sane-3.26.4-bp160.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-utils-3.26.4-bp160.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.aarch64"
},
"product_reference": "hplip-utils-3.26.4-bp160.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-utils-3.26.4-bp160.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.ppc64le"
},
"product_reference": "hplip-utils-3.26.4-bp160.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-utils-3.26.4-bp160.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.s390x"
},
"product_reference": "hplip-utils-3.26.4-bp160.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-utils-3.26.4-bp160.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.x86_64"
},
"product_reference": "hplip-utils-3.26.4-bp160.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libhplip0-3.26.4-bp160.1.1.aarch64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.aarch64"
},
"product_reference": "libhplip0-3.26.4-bp160.1.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libhplip0-3.26.4-bp160.1.1.ppc64le as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.ppc64le"
},
"product_reference": "libhplip0-3.26.4-bp160.1.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libhplip0-3.26.4-bp160.1.1.s390x as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.s390x"
},
"product_reference": "libhplip0-3.26.4-bp160.1.1.s390x",
"relates_to_product_reference": "openSUSE Leap 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libhplip0-3.26.4-bp160.1.1.x86_64 as component of openSUSE Leap 16.0",
"product_id": "openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.x86_64"
},
"product_reference": "libhplip0-3.26.4-bp160.1.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-43023",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-43023"
}
],
"notes": [
{
"category": "general",
"text": "A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software documentation. This potential vulnerability is due to the use of a weak code signing key, Digital Signature Algorithm (DSA).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-common-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-driver-hpcups-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-fax-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-hpcups-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-hpps-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-plugin-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-postscript-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-43023",
"url": "https://www.suse.com/security/cve/CVE-2025-43023"
},
{
"category": "external",
"summary": "SUSE Bug 1266031 for CVE-2025-43023",
"url": "https://bugzilla.suse.com/1266031"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-common-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-driver-hpcups-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-fax-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-hpcups-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-hpps-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-plugin-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-postscript-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-common-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-driver-hpcups-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-fax-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-hpcups-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-hpps-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-plugin-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-postscript-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-01T16:17:43Z",
"details": "important"
}
],
"title": "CVE-2025-43023"
},
{
"cve": "CVE-2026-8631",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-8631"
}
],
"notes": [
{
"category": "general",
"text": "A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software. This potential vulnerability may allow escalation of privileges and/or arbitrary code execution via an integer overflow in the hpcups processing path when handling crafted print data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-common-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-driver-hpcups-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-fax-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-hpcups-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-hpps-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-plugin-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-postscript-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-8631",
"url": "https://www.suse.com/security/cve/CVE-2026-8631"
},
{
"category": "external",
"summary": "SUSE Bug 1266023 for CVE-2026-8631",
"url": "https://bugzilla.suse.com/1266023"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-common-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-driver-hpcups-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-fax-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-hpcups-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-hpps-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-plugin-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-postscript-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-common-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-driver-hpcups-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-fax-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-hpcups-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-hpps-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-plugin-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-postscript-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-01T16:17:43Z",
"details": "critical"
}
],
"title": "CVE-2026-8631"
},
{
"cve": "CVE-2026-8632",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-8632"
}
],
"notes": [
{
"category": "general",
"text": "A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software. This potential vulnerability may allow escalation of privileges and/or arbitrary code execution via operating system command injection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-common-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-driver-hpcups-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-fax-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-hpcups-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-hpps-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-plugin-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-postscript-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-8632",
"url": "https://www.suse.com/security/cve/CVE-2026-8632"
},
{
"category": "external",
"summary": "SUSE Bug 1266024 for CVE-2026-8632",
"url": "https://bugzilla.suse.com/1266024"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-common-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-driver-hpcups-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-fax-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-hpcups-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-hpps-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-plugin-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-postscript-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-base-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-common-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-cups-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-devel-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-driver-hpcups-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-fax-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-hpcups-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-hpps-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-plugin-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-ppds-postscript-3.26.4-bp160.1.1.noarch",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-sane-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:hplip-utils-3.26.4-bp160.1.1.x86_64",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.aarch64",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.ppc64le",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.s390x",
"openSUSE Leap 16.0:libhplip0-3.26.4-bp160.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-01T16:17:43Z",
"details": "important"
}
],
"title": "CVE-2026-8632"
}
]
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…