Lucene search
UbuntuUSN-2831-1HistoryDec 07, 2015 - 12:00 a.m.
cups-filters vulnerability
2015-12-0700:00:00
ubuntu.com
30
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.8 High
AI Score
Confidence
High
0.024 Low
EPSS
Percentile
89.9%
Releases
- Ubuntu 15.10
- Ubuntu 15.04
- Ubuntu 14.04 ESM
Packages
- cups-filters - OpenPrinting CUPS Filters
Details
Michal Kowalczyk discovered that the cups-filters foomatic-rip filter
incorrectly stripped shell escape characters. A remote attacker could
possibly use this issue to execute arbitrary code as the lp user.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 15.10 | noarch | cups-filters | < 1.0.76-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 15.10 | noarch | cups-browsed | < 1.0.76-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 15.10 | noarch | cups-browsed-dbgsym | < 1.0.76-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 15.10 | noarch | cups-filters-core-drivers | < 1.0.76-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 15.10 | noarch | cups-filters-core-drivers-dbgsym | < 1.0.76-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 15.10 | noarch | cups-filters-dbgsym | < 1.0.76-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 15.10 | noarch | libcupsfilters-dev | < 1.0.76-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 15.10 | noarch | libcupsfilters1 | < 1.0.76-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 15.10 | noarch | libcupsfilters1-dbgsym | < 1.0.76-1ubuntu0.1 | UNKNOWN |
| Ubuntu | 15.10 | noarch | libfontembed-dev | < 1.0.76-1ubuntu0.1 | UNKNOWN |
References
Related
cve
cve
CVE-2015-8327
2015-12-17 19:59:05
CVE-2015-8560
2016-04-14 14:59:06
nessus
nessus
openSUSE Security Update : cups-filters (openSUSE-2016-67)
2016-01-25 00:00:00
SUSE SLED12 / SLES12 Security Update : cups-filters (SUSE-SU-2016:0092-1)
2016-01-14 00:00:00
Ubuntu 12.04 LTS : foomatic-filters vulnerability (USN-2831-2)
2015-12-08 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-2831-2)
2015-12-08 00:00:00
Debian: Security Advisory (DSA-3411-1)
2015-12-01 00:00:00
SUSE: Security Advisory (SUSE-SU-2016:0092-1)
2021-04-19 00:00:00
ubuntu
ubuntu
foomatic-filters vulnerability
2015-12-07 00:00:00
ubuntucve
ubuntucve
CVE-2015-8327
2015-12-02 00:00:00
CVE-2015-8560
2015-12-15 00:00:00
cvelist
cvelist
CVE-2015-8327
2015-12-17 19:00:00
CVE-2015-8560
2016-04-14 14:00:00
debian
debian
[SECURITY] [DLA 365-1] foomatic-filters security update
2015-12-09 08:40:16
[SECURITY] [DSA 3411-1] cups-filters security update
2015-12-02 22:34:50
[SECURITY] [DSA 3429-1] foomatic-filters security update
2015-12-21 18:18:15
freebsd
freebsd
cups-filters -- code execution
2015-10-30 00:00:00
prion
prion
Input validation
2015-12-17 19:59:00
Input validation
2016-04-14 14:59:00
mageia
mageia
Updated cups-filters packages fix security vulnerability
2015-12-05 13:03:58
debiancve
debiancve
CVE-2015-8327
2015-12-17 19:59:05
CVE-2015-8560
2016-04-14 14:59:06
osv
osv
foomatic-filters - security update
2015-12-09 00:00:00
nvd
nvd
CVE-2015-8327
2015-12-17 19:59:05
CVE-2015-8560
2016-04-14 14:59:06
f5
f5
K45213552 : cups-filters vulnerabilities CVE-2015-8327 and CVE-2015-8560
2017-09-13 00:00:00
oraclelinux
oraclelinux
foomatic security update
2016-03-22 00:00:00
redhat
redhat
(RHSA-2016:0491) Moderate: foomatic security update
2016-03-22 00:00:00
centos
centos
foomatic security update
2016-03-23 13:11:25
veracode
veracode
Arbitrary Code Execution
2019-05-02 05:28:05
Arbitrary Code Execution
2019-05-02 05:28:06
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.8 High
AI Score
Confidence
High
0.024 Low
EPSS
Percentile
89.9%
Related for USN-2831-1