Download
| Alert*
|
oval:org.secpod.oval:def:89045171
This update fixes the following security issues: CVE-2015-8327: adds backtick and semicolon to the list of illegal shell escape characters . CVE-2015-8560: fixed code execution via improper escaping of ; . oval:org.secpod.oval:def:702869 foomatic-filters: OpenPrinting printer support - filters foomatic-filters could be made to run programs as the lp user if it processed a specially crafted print job. oval:org.secpod.oval:def:2103553 Incomplete blacklist vulnerability in util.c in foomatic-rip in cups-filters 1.0.42 before 1.2.0 and in foomatic-filters in Foomatic 4.0.x allows remote attackers to execute arbitrary commands via ` (backtick) characters in a print job. oval:org.secpod.oval:def:702870 cups-filters: OpenPrinting CUPS Filters cups-filters could be made to run programs as the lp user if it processed a specially crafted print job. oval:org.secpod.oval:def:203886 Foomatic is a comprehensive, spooler-independent database of printers, printer drivers, and driver descriptions. The package also includes spooler-independent command line interfaces to manipulate queues and to print files and manipulate print jobs. It was discovered that the unhtmlify function of f ... oval:org.secpod.oval:def:1501411 Foomatic is a comprehensive, spooler-independent database of printers, printer drivers, and driver descriptions. The package also includes spooler-independent command line interfaces to manipulate queues and to print files and manipulate print jobs. It was discovered that the unhtmlify function of f ... oval:org.secpod.oval:def:602292 Michal Kowalczyk discovered that missing input sanitising in the foomatic-rip print filter might result in the execution of arbitrary commands. The oldstable distribution is not affected. oval:org.secpod.oval:def:602319 Michal Kowalczyk and Adam Chester discovered that missing input sanitising in the foomatic-rip print filter might result in the execution of arbitrary commands. oval:org.secpod.oval:def:52641 cups-filters: OpenPrinting CUPS Filters cups-filters could be made to run programs as the lp user if it processed a specially crafted print job. oval:org.secpod.oval:def:501792 Foomatic is a comprehensive, spooler-independent database of printers, printer drivers, and driver descriptions. The package also includes spooler-independent command line interfaces to manipulate queues and to print files and manipulate print jobs. It was discovered that the unhtmlify function of f ... |
