Описание
ELSA-2008-0818: hplip security update (MODERATE)
[1.6.7-4.1.el5_2.4]
- Applied patch to make hpssd message parser more robust (bug #457052).
- Applied patches to fix insecure alert emails (bug #455235).
Обновленные пакеты
Oracle Linux 5
Oracle Linux ia64
hpijs
1.6.7-4.1.el5_2.4
hplip
1.6.7-4.1.el5_2.4
libsane-hpaio
1.6.7-4.1.el5_2.4
Oracle Linux x86_64
hpijs
1.6.7-4.1.el5_2.4
hplip
1.6.7-4.1.el5_2.4
libsane-hpaio
1.6.7-4.1.el5_2.4
Oracle Linux i386
hpijs
1.6.7-4.1.el5_2.4
hplip
1.6.7-4.1.el5_2.4
libsane-hpaio
1.6.7-4.1.el5_2.4
Связанные CVE
Связанные уязвимости
The hpssd message parser in hpssd.py in HP Linux Imaging and Printing (HPLIP) 1.6.7 allows local users to cause a denial of service (process stop) via a crafted packet, as demonstrated by sending "msg=0" to TCP port 2207.
The hpssd message parser in hpssd.py in HP Linux Imaging and Printing (HPLIP) 1.6.7 allows local users to cause a denial of service (process stop) via a crafted packet, as demonstrated by sending "msg=0" to TCP port 2207.
The hpssd message parser in hpssd.py in HP Linux Imaging and Printing (HPLIP) 1.6.7 allows local users to cause a denial of service (process stop) via a crafted packet, as demonstrated by sending "msg=0" to TCP port 2207.
The hpssd message parser in hpssd.py in HP Linux Imaging and Printing ...
The alert-mailing implementation in HP Linux Imaging and Printing (HPLIP) 1.6.7 allows local users to gain privileges and send e-mail messages from the root account via vectors related to the setalerts message, and lack of validation of the device URI associated with an event message.