Ubuntu Update For Hplip USN-1981-1 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

It was discovered that HPLIP incorrectly handled temporary files when using the fax capabilities. A local attacker could possibly use this issue to overwrite arbitrary files. This issue only applied to Ubuntu 10.04 LTS. (CVE-2011-2722) Tim Waugh discovered that HPLIP incorrectly handled temporary files when printing. A local attacker could possibly use this issue to overwrite arbitrary files. In the default installation of Ubuntu 12.04 LTS and Ubuntu 12.10, this should be prevented by the Yama link restrictions. (CVE-2013-0200)

Affected

hplip on Ubuntu 12.10 , Ubuntu 12.04 LTS , Ubuntu 10.04 LTS

References

https://lists.ubuntu.com/archives/ubuntu-security-announce/2013-September/002269.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-2722, CVE-2013-0200
CVSS Base Score: 1.9
AV:L/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Ubuntu Update for linux-lts-trusty USN-2313-1
Ubuntu Update for nova USN-1501-1
Ubuntu Update for linux USN-1683-1
Ubuntu Update for suds USN-2008-1
Ubuntu Update for linux USN-2314-1

Ubuntu Update for hplip USN-1981-1

Take action and discover your vulnerabilities