Important information regarding Canon Product Printing product security, advisories, and notifications
SUSE has released a security update for the Linux kernel addressing the previously disclosed “Dirty Frag” vulnerabilities.
A vulnerability has been discovered in the SUSE Linux kernel which allows a local non-root user to gain full root access to the system.
A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0.
PRISMAproduce Tech Java CVE-2025-30749, CVE-2025-50059, CVE-2025-50106, CVE-2025-21587 and CVE-2024-21147 vulnerabilities.
“Shai-Hulud” worm specifically engineered to exploit the Node Package Manager (npm) ecosystem.
Artifex Ghostscript versions prior to 10.02.0 can lead to remote code execution via crafted PostScript documents.
Curl heap based buffer overflow when asked to pass the host name to the SOCKS5 proxy to resolve address.
Artifex Ghostscript through 10.01.2 mishandles permission validation for pipe devices (with the %pipe% prefix or the | pipe character prefix).
Certain versions of OpenSSL contain a type confusion vulnerability relating to X.400 address processing inside an X.509 GeneralName.
For information about products and services from Canon Inc., please contact your local representatives or visit https://psirt.canon.
For information about products and services from other Canon Group companies, please contact your local representatives or visit their websites.