AI agents found vulns in this popular Linux and Unix print server

Monday 6th April 2026 23:57 GMT Sorry that handle is already taken.

Oh no!

The Register has begun putting "this" in headlines

31 1 Reply
1. Tuesday 7th April 2026 02:03 GMT Clausewitz4.1
  
  Re: Oh no!
  
  Investors must be desperate, indeed
  
  11 0 Reply
  1. Tuesday 7th April 2026 08:35 GMT Anonymous Coward
    
    Re: Oh no!
    
    Well given the huge IT stories El Reg has repeated ignored over the past few weeks, it's a good thing there are other forums around.
    
    And it's a sad day when the BBCs coverage is broader than El Reg. Something I would not have said 3 years ago.
    
    Let' see if this comment get's deleted ....
    
    #BusinessInterests
    
    10 2 Reply
    1. Tuesday 7th April 2026 09:49 GMT Anonymous Coward
      
      Re: Oh no!
      
      ... huge IT stories El Reg has repeated ignored ...
      
      Don't know about huge, repeated (?) or even repeatedly.
      
      But ignored implies willful action.
      
      Seriously, now.
      
      ElReg has been my go-to IT publication for the last 13 years or so and in my view, I do not think ignored would be the case.
      
      That said, I have not seen / read anything about CVE-2026-29111 and CVE-2026-3888.
      
      Maybe it slipped by ElReg, by me or they are not important enough to report on.
      
      Worst case?
      
      Shit happens, everywhere.
      
      Both at ElReg and while travelling in a tin can 406,771 km from Mother Earth.
      
      .
      
      2 1 Reply
      1. Tuesday 7th April 2026 10:01 GMT Anonymous Coward
        
        Re: Oh no!
        
        Not a single article on the seismic story about Meta etc being found liable in CA. If you rely on El Reg that never happened.
        
        https://www.bbc.co.uk/news/articles/c747x7gz249o
        
        There have been others. How about the story about a bot that got stroppy when it's Wiki edits were pulled ?
        
        https://www.malwarebytes.com/blog/ai/2026/04/wikipedias-ai-agent-row-likely-just-the-beginning-of-the-bot-ocalypse
        
        3 0 Reply
        
        Tuesday 7th April 2026 11:22 GMT kmorwath
        
        Re: Oh no!
        
        There was also Uffizi museum in Florence p0wend thorouglhy (and shutdown - including bricking up doors) - not one of the most unknown ones in the world...
        
        0 1 Reply
2. Tuesday 7th April 2026 04:53 GMT Throatwarbler Mangrove
  
  Re: Oh no!
  
  You won't believe what comes next!
  
  14 0 Reply
3. This post has been deleted by its author
4. Tuesday 7th April 2026 06:32 GMT Dan 55
  
  Re: Oh no!
  
  Could be worse, could be that AI agents found two weird tricks.
  
  11 0 Reply
  1. Tuesday 7th April 2026 08:06 GMT that one in the corner
    
    Re: Oh no!
    
    The third one will amaze you!!!
    
    8 0 Reply
5. Tuesday 7th April 2026 06:55 GMT b0llchit
  
  Re: Oh no!
  
  Yes,...What about "that"?
  
  1 0 Reply
6. Tuesday 7th April 2026 10:39 GMT FrogsAndChips
  
  Re: Oh no!
  
  Yeah, before clicking on the article I really had NO idea what "this popular Linux and Unix print server" could be...
  
  3 0 Reply
  1. Tuesday 7th April 2026 13:28 GMT Yet Another Anonymous coward
    
    Re: Oh no!
    
    Fake news, there is nothing 'popular' about anything to do with printers
    
    4 0 Reply
7. Tuesday 7th April 2026 16:16 GMT Blazde
  
  Re: Oh no!
  
  We've also been denied the gold that could have been "2 flaws 1 CUPS"
  
  2 0 Reply
Tuesday 7th April 2026 05:14 GMT Eric 9001

How much time was spent prompting exactly?

I suspect that it took twice as long as looking at CUPS without proprietary software and SaaSS and finding some more of the remaining bugs.

1 1 Reply
Tuesday 7th April 2026 07:09 GMT chuckufarley

"This" has always been my issue with CUPS on Linux...

...If I don't have a printer installed why does my entire desktop depend on it? Seriously. Install any given Linux desktop and then uninstall CUPS. You will be left with a box that only runs a CLI. That's great if your last name is Torvalds but the rest of us use a hell if more than the command line.

3 8 Reply
1. Tuesday 7th April 2026 07:49 GMT hugo tyson
  
  Re: "This" has always been my issue with CUPS on Linux...
  
  Because print-to-pdf is a feature supported by almost every application? OK, I dunno why that would need CUPS but I can see why "printing" per se is always there even if you have no hardware.
  
  And print to pdf is very useful, you can then mess with it and share eg. tickets to your phone via google drive. &c &c
  
  7 1 Reply
  1. Tuesday 7th April 2026 08:14 GMT that one in the corner
    
    Re: "This" has always been my issue with CUPS on Linux...
    
    > why that would need CUPS
    
    Because CUPS, with its drivers and filters installed, provides a conversion to PDF, a single path that all the desktop programs can use. They *could* all implement PDF/Postscript generation without calling CUPS but from their p.o.v. that is duplicated effort. And if you've installed all the office-style apps, having a default CUPS installed, even without a physical printer, isn't a killer overhead.
    
    3 1 Reply
    1. Tuesday 7th April 2026 13:32 GMT Yet Another Anonymous coward
      
      Re: "This" has always been my issue with CUPS on Linux...
      
      No but it's a big and complex system that has lots of networking, remote execution and low level driver access, is ubiquitous and has been 'in the wild' for decades which means it has to be a prime source of unknown exploits
      
      Just size on disk isnt the main concern if you're managing a secure environment
      
      3 0 Reply
Tuesday 7th April 2026 08:18 GMT David Pearce

Maybe because Postscript and PDF are both languages with far more executable capability than is wise for page rendering

14 0 Reply
Tuesday 7th April 2026 11:20 GMT kmorwath

"more likely to be used in business environments."

Just shared printers became common in non-environment business as well, since many home routers and NAS today may run CUPS as well.

And still, the fact it makes businesses vulnerable is not secondary - although probably many run Windows print servers (which are not without issues too).

3 1 Reply
Tuesday 7th April 2026 12:02 GMT Anonymous Coward

DHCP exploit..

there's an exploit in the linux DHCP.. that no one seems to have spotted yet.

I saw it in china, when a staff member walked in with a mobile phone, that was able to leverage the DHCP server ,take it down and then replace it with a "malicious" version

hosted on the phone.

haven't had time to look at it fully yet.

1 6 Reply
1. Tuesday 7th April 2026 12:29 GMT John_Ericsson
  
  Re: DHCP exploit..
  
  How did you test it?
  
  3 0 Reply
2. Tuesday 7th April 2026 16:27 GMT kmorwath
  
  Re: DHCP exploit..
  
  DHCP is not a secure protocol - and it's easy to attack - that's why switches have DHCP snooping features to block man-in-the-middle attacks (even from a phone, a DHCP server is not complex)
  
  5 1 Reply
Wednesday 8th April 2026 15:23 GMT TVU

"AI agents found vulns in this popular Linux and Unix print server"

I would be more impressed if AI coding agents could actually eliminate said vulnerabilities.

0 0 Reply