23 matches found
MiracleLinux 4 : hplip-3.12.4-4.AXS4.1 (AXSA:2013-628:02)
The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2013-628:02 advisory. The Hewlett-Packard Linux Imaging and Printing Project provides drivers for HP printers and multi-function peripherals. Security issues fixed with this releas...
SUSE: Security Advisory (SUSE-SU-2014:0188-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2014:0188-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : hplip (openSUSE-SU-2013:1617-1)
the following security issue was fixed for HPLIP 3.13.10: usage of an insecure polkit DBUS API fix for bnc836937 and CVE-2013-4325 that are related to CVE-2013-4288 and bnc835827. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
Debian DSA-2829-1 : hplip - several vulnerabilities
Multiple vulnerabilities have been found in the HP Linux Printing and Imaging System: Insecure temporary files, insufficient permission checks in PackageKit and the insecure hp-upgrade service has been disabled. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...
[SECURITY] [DSA 2829-1] hplip security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2829-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff December 28, 2013 http://www.debian.org/security/faq -...
Debian Security Advisory DSA 2829-1 (hplip - several vulnerabilities)
Multiple vulnerabilities have been found in the HP Linux Printing and Imaging System: Insecure temporary files, insufficient permission checks in PackageKit and the insecure hp-upgrade service has been disabled. OpenVAS Vulnerability Test $Id: deb2829.nasl 6611 2017-07-07 12:07:20Z cfischer $...
[slackware-security] hplip
New hplip packages are available for Slackware 13.1, 13.37, 14.0, and -current to fix security issues. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/hplip-3.12.9-i486-3slack14.0.txz: Rebuilt. This fixes a polkit race condition that could allow local users to bypass...
Fedora 20 : hplip-3.13.9-2.fc20 (2013-17171)
This update brings in the latest upstream release and fixes a security issue with the way polkit is used for authentication. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean an...
Mandriva Linux Security Advisory : polkit (MDVSA-2013:243)
Updated polkit packages fix security vulnerability : A race condition was found in the way the PolicyKit pkcheck utility checked process authorization when the process was specified by its process ID via the --process option. A local user could use this flaw to bypass intended PolicyKit...
RedHat Update for hplip RHSA-2013:1274-01
Check for the Version of hplip OpenVAS Vulnerability Test RedHat Update for hplip RHSA-2013:1274-01 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...
CentOS Update for hpijs CESA-2013:1274 centos6
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-1956-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for hplip FEDORA-2013-17127
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RedHat Update for hplip RHSA-2013:1274-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2013-4325
The checkpermissionv1 function in base/pkit.py in HP Linux Imaging and Printing HPLIP through 3.13.9 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race conditio...
CVE-2013-4325
CVE-2013-4325 affects HP Linux Printing and Imaging (HPLIP) up to version 3.13.9, where a Polkit race between PolkitUnixProcess and a polkit authority can allow a local user to bypass access restrictions via a setuid process or pkexec. Related advisories/bulletins indicate the fix requires upgrad...
Oracle Linux 6 : hplip (ELSA-2013-1274)
The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2013-1274 advisory. 3.12.4-4:.1 - Applied patch to avoid unix-process authorization subject when using polkit as it is racy CVE-2013-4325. Tenable has extracted the preceding...
CentOS 6 : hplip (CESA-2013:1274)
Updated hplip packages that fix one security issue are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
RHEL 6 : hplip (RHSA-2013:1274)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2013:1274 advisory. - hplip: Insecure calling of polkit CVE-2013-4325 Note that Nessus has not tested for this issue but has instead relied only on the application's...