[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-1462 hplip -- missing input sanitising

ID: oval:org.mitre.oval:def:8070Date: (C)2009-12-15   (M)2021-09-11
Class: PATCHFamily: unix




Kees Cook discovered that the hpssd tool of the HP Linux Printing and Imaging System (HPLIP) performs insufficient input sanitising of shell meta characters, which may result in local privilege escalation to the hplip user. The old stable distribution (sarge) is not affected by this problem. For the stable distribution (etch), this problem has been fixed in version 1.6.10-3etch1. For the unstable distribution (sid), this problem has been fixed in version 1.6.10-4.3. We recommend that you upgrade your hplip packages.

Platform:
Debian 4.0
Product:
hplip
Reference:
DSA-1462
CVE-2007-5208
CVE    1
CVE-2007-5208
CPE    1
cpe:/o:debian:debian_linux:4.0

© SecPod Technologies