qemu: Machine emulator and virtualizer Details: USN-6567-1 fixed vulnerabilities QEMU. The fix for CVE-2023-2861 was too restrictive and introduced a behaviour change leading to a regression in certain environments. This update fixes the problem. Original advisory USN-6567-1 introduced a regression in QEMU.
The host is installed with hplip 1.6.7 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to handle vectors related to the setalerts message. Successful exploitation could allow attackers to gain privileges and send e-mail messages from the root account.
The host is installed with hplip before 3.13.2 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to handle a permissions issue for /var/log/hp and /var/log/hp/tmp. Successful exploitation could allow attackers to delete log files via standard filesystem operations.
The host is installed with hplip 1.6.7 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to handle vectors related to the setalerts message. Successful exploitation could allow attackers to gain privileges and send e-mail messages from the root account.
The host is installed with hplip before 3.13.2 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to handle a permissions issue for /var/log/hp and /var/log/hp/tmp. Successful exploitation could allow attackers to delete log files via standard filesystem operations.