Описание
ELSA-2016-0491: foomatic security update (MODERATE)
[4.0.4-5]
- Also consider back tick and semicolon as illegal shell escape characters.
- CVE-2015-8327, CVE-2015-8560
[4.0.4-4]
- Prevent foomatic-rip overrun (bug #1214534).
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
foomatic
4.0.4-5.el6_7
Oracle Linux i686
foomatic
4.0.4-5.el6_7
Oracle Linux sparc64
foomatic
4.0.4-5.el6_7
Связанные CVE
Связанные уязвимости
Incomplete blacklist vulnerability in util.c in foomatic-rip in cups-filters 1.0.42 before 1.4.0 and in foomatic-filters in Foomatic 4.0.x allows remote attackers to execute arbitrary commands via a ; (semicolon) character in a print job, a different vulnerability than CVE-2015-8327.
Incomplete blacklist vulnerability in util.c in foomatic-rip in cups-filters 1.0.42 before 1.4.0 and in foomatic-filters in Foomatic 4.0.x allows remote attackers to execute arbitrary commands via a ; (semicolon) character in a print job, a different vulnerability than CVE-2015-8327.
Incomplete blacklist vulnerability in util.c in foomatic-rip in cups-filters 1.0.42 before 1.4.0 and in foomatic-filters in Foomatic 4.0.x allows remote attackers to execute arbitrary commands via a ; (semicolon) character in a print job, a different vulnerability than CVE-2015-8327.
Incomplete blacklist vulnerability in util.c in foomatic-rip in cups-f ...