Libcurl/curl vulnerability CVE-2023-38545 and CVE-2023-38546
The maintainers of curl, the popular command-line tool and library for transferring data with URLs, released curl 8.4.0 on 11 October, 2023. This version includes fixes for both CVEs [38545] rated “HIGH” severity and [38546] as “LOW”.
The table below gives the vulnerability status for the Canon Production Printing hardware and software products listed for the CVE-2023-38545.
Products assessed and status
Cutsheet and Toner Systems / Inkjet Sheetfed Press
| Products | Status |
| PRISMAsync print server based products | Not impacted |
| varioPRINT 140 series | Not impacted |
| varioPRINT 6000 series | Not impacted |
| varioPRINT i-series (including RIP units) | Not impacted |
| varioPRINT iX-series (including RIP units) | Not impacted |
| Service Control Station (SCS) for VPi300 series and VPiX series | Impacted, risk of exploit low, reporting via Service channel |
| PRISMAsync i300/iX Simulator | Not impacted |
| PRISMAprepare V8 | Not impacted |
| PRISMAdirect V1 | Not impacted |
| PRISMAprofiler | Not impacted |
| PRISMAorder Flex PRISMA Home PRISMAguide PRISMAprepare Go PRISMAlytics Accounting PRISMAlytics Dashboard |
Not impacted |
Continuous Printing
| Products | Status |
| ColorStream 3×00 | Not impacted |
| ColorStream 3000Z/ ColorStream 6000 | Not impacted |
| ColorStream 8000 | Not impacted |
| ProStream 1×00, ProStream 3×00 | Not impacted |
| LabelStream 4000 series | Impacted, risk of exploit low, impacted library will be updated in next regular update (from Microsoft). |
| JetStream V1/JetStream V2 | Not impacted |
| VarioStream 4000 | Not impacted |
| VarioStream 7000 series | Not impacted |
| VarioStream 8000 | Not impacted |
| PRISMAproduction Server V5 / PRISMAcontrol V5 | Not impacted |
| PRISMAproduction Server V6.2 | Not impacted |
| PRISMAproduction Host, CIS and Router | Not impacted |
| PRISMAspool | Not impacted |
| DocSetter | Not impacted |
| PRISMAsimulate | Not impacted |
| DPconvert | Not impacted |
| TrueProof | Not impacted |
Large Format Graphics
| Products | Status |
| Arizona series | Not impacted |
| Colorado series | Not impacted |
Technical Documentation Systems
| Products | Status |
| PlotWave series | Not impacted
|
| PlotWave series (PW750/900) | Not impacted
|
| ColorWave series | Not impacted
|
| ColorWave series (CW810/910) | Not impacted
|
| Scanner Professional | Not impacted
|
| Driver Select, Driver Express, Publisher Mobile | Not impacted |
| Publisher Select | Not impacted |
| Account Console | Not impacted |
| Repro Desk | Not impacted |
| ColorWave Image Device Registration App (Power app) |
Not impacted |
| Scanning Master Pro Color | Not impacted |
Service & Support Tools
| Products | Status |
| On Remote Service | Not impacted |
| Technical Service Manual & related tools | Not impacted |
| Advisory Dashboard – Analysis & Maintenance | Not impacted |
| PRISMAservice | Not impacted |
