ALSA-2025:9156

[ALSA-2025:9156] Moderate: golang-github-openprinting-ipp-usb security update

Type:

security

Severity:

moderate

Release date:

2025-07-28

Description:

HTTP reverse proxy, backed by IPP-over-USB connection to device. It enables  
driverless support for USB devices capable of using IPP-over-USB protocol.  

Security Fix(es):  

  * net/[http:](http:) Request smuggling due to acceptance of invalid chunked data in net/http (CVE-2025-22871)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	ipp-usb-0.9.27-3.el10_0.aarch64.rpm	e874793739fd4611ceb5320593622ddcb6b62ef3cbfa91189c5a09b3d642b0a3
ppc64le	ipp-usb-0.9.27-3.el10_0.ppc64le.rpm	90679ff6b693574a79d193350dcfe42a7d96209f62bcb4fd396f2da974024193
s390x	ipp-usb-0.9.27-3.el10_0.s390x.rpm	1b39d739de070f735960634b0bbe8abffdfafe97b5ac8bf0d133342c46f49b72
x86_64	ipp-usb-0.9.27-3.el10_0.x86_64.rpm	3e3303601689c8e1ece2c38cc197a8bd61de0b182a093143e690723066da3ef6
x86_64_v2	ipp-usb-0.9.27-3.el10_0.x86_64_v2.rpm	7af654e7b17f135e83b87519ddf465aef616559bbc83368b961e43c09b3aa6c1

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.