MDVSA-2008:169 -- Mandriva hplipID: oval:org.secpod.oval:def:301601 | Date: (C)2012-01-07 (M)2021-09-11 |
Class: PATCH | Family: unix |
Marc Schoenefeld of the Red Hat Security Response Team discovered a vulnerability in the hplip alert-mailing functionality that could allow a local attacker to elevate their privileges by using specially-crafted packets to trigger alert mails that are sent by the root account . Another vulnerability was discovered by Marc Schoenefeld in the hpssd message parser that could allow a local attacker to stop the hpssd process by sending specially-craftd packets, causing a denial of service . The updated packages have been patched to correct these issues.
Platform: |
Mandriva Linux 2007.1 |
Mandriva Linux 2008.1 |
Mandriva Linux 2008.0 |