6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.005 Low
EPSS
Percentile
77.1%
Debian Security Advisory DSA-2829-1 [email protected]
http://www.debian.org/security/ Moritz Muehlenhoff
December 28, 2013 http://www.debian.org/security/faq
Package : hplip
Vulnerability : several
Problem type : remote
Debian-specific: no
CVE ID : CVE-2013-0200 CVE-2013-4325 CVE-2013-6402 CVE-2013-6427
Multiple vulnerabilities have been found in the HP Linux Printing and
Imaging System: Insecure temporary files, insufficient permission checks
in PackageKit and the insecure hp-upgrade service has been disabled.
For the oldstable distribution (squeeze), these problems have been fixed in
version 3.10.6-2+squeeze2.
For the stable distribution (wheezy), these problems have been fixed in
version 3.12.6-3.1+deb7u1.
For the unstable distribution (sid), these problems have been fixed in
version 3.13.11-2.
We recommend that you upgrade your hplip packages.
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: http://www.debian.org/security/
Mailing list: [email protected]
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 6 | all | hplip-dbg | < 3.10.6-2+squeeze2 | hplip-dbg_3.10.6-2+squeeze2_all.deb |
Debian | 6 | all | hplip-doc | < 3.10.6-2+squeeze2 | hplip-doc_3.10.6-2+squeeze2_all.deb |
Debian | 7 | all | hplip | < 3.12.6-3.1+deb7u1 | hplip_3.12.6-3.1+deb7u1_all.deb |
Debian | 6 | all | hpijs | < 3.10.6-2+squeeze2 | hpijs_3.10.6-2+squeeze2_all.deb |
Debian | 6 | all | libhpmud-dev | < 3.10.6-2+squeeze2 | libhpmud-dev_3.10.6-2+squeeze2_all.deb |
Debian | 6 | all | hpijs-ppds | < 3.10.6-2+squeeze2 | hpijs-ppds_3.10.6-2+squeeze2_all.deb |
Debian | 6 | all | libsane-hpaio | < 3.10.6-2+squeeze2 | libsane-hpaio_3.10.6-2+squeeze2_all.deb |
Debian | 6 | all | hplip-data | < 3.10.6-2+squeeze2 | hplip-data_3.10.6-2+squeeze2_all.deb |
Debian | 6 | all | libhpmud0 | < 3.10.6-2+squeeze2 | libhpmud0_3.10.6-2+squeeze2_all.deb |
Debian | 6 | all | hplip | < 3.10.6-2+squeeze2 | hplip_3.10.6-2+squeeze2_all.deb |