commit 95576ec3d20c109332d14672a807353cdc551018
Author: Zdenek Dohnal <zdohnal@redhat.com>
Date:   Thu Sep 26 23:09:29 2024 +0200

    cfGetPrinterAttributes5(): Validate response attributes before return
    
    The destination can be corrupted or forged, so validate the response
    to strenghten security measures.
    
    Fixes CVE-2024-47076

Index: cups-filters-1.28.17/cupsfilters/ipp.c
===================================================================
--- cups-filters-1.28.17.orig/cupsfilters/ipp.c	2024-09-27 15:56:02.498019369 +0200
+++ cups-filters-1.28.17/cupsfilters/ipp.c	2024-09-27 15:56:02.494019366 +0200
@@ -435,6 +435,14 @@
 	    ippDelete(response2);
 	  }
 	}
+
+	// Check if the response is valid
+	if (!ippValidateAttributes(response))
+	{
+	  ippDelete(response);
+	  response = NULL;
+	}
+
 	if (have_http == 0) httpClose(http_printer);
 	if (uri) free(uri);
 	return response;