Canon Generic Plus Printer Drivers Out-of-Bounds Read Vulnerability

A vulnerability allowing out-of-bounds read has been identified in the print processing of several Generic Plus printer drivers, including PCL6, UFR II, LIPS4, LIPSLX, and PS. This vulnerability can lead to unauthorized memory access, potentially causing a memory crash. The issue arises when printing is handled by a malicious application, disrupting the normal printing process of other applications. Affected versions are through 3.30.

Impact

Exploitation of this vulnerability can cause out-of-bounds memory access, leading to a memory crash. Additionally, it can disrupt the printing process of normal applications by causing delays or interruptions, although this issue does not affect subsequent print jobs.

Remediation

Users are advised to update to version 3.31 or higher of the Generic Plus PCL6, UFR II, LIPS4, LIPSLX, or PS Printer Drivers. The updated drivers are available through local Canon sales representatives.