16 matches found
Mageia: Security Advisory (MGASA-2014-0033)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : hplip (openSUSE-SU-2014:0127-1)
fix-CVE-2013-6402.dif fixes hardcoded file name /tmp/hp-pkservice.log in pkit.py bnc852368. - disablehp-upgrade.patch disables hp-upgrade/upgrade.py for security reasons bnc853405. To upgrade HPLIP an openSUSE software package manager like YaST or zypper should be used. CVE-2013-6427...
Ubuntu Update for hplip USN-2085-1
Check for the Version of hplip OpenVAS Vulnerability Test $Id: gbubuntuUSN20851.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for hplip USN-2085-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; yo...
Ubuntu: Security Advisory (USN-2085-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mandriva Linux Security Advisory : hplip (MDVSA-2014:023)
Updated hplip packages fix security vulnerabilities : It was discovered that the HPLIP Polkit daemon incorrectly handled temporary files. A local attacker could possibly use this issue to overwrite arbitrary files CVE-2013-6402. It was discovered that HPLIP contained an upgrade tool that would...
USN-2085-1: HPLIP vulnerabilities
It was discovered that the HPLIP Polkit daemon incorrectly handled temporary files. A local attacker could possibly use this issue to overwrite arbitrary files. In the default installation of Ubuntu 12.04 LTS and higher, this should be prevented by the Yama link restrictions. CVE-2013-6402 It was...
Debian DSA-2829-1 : hplip - several vulnerabilities
Multiple vulnerabilities have been found in the HP Linux Printing and Imaging System: Insecure temporary files, insufficient permission checks in PackageKit and the insecure hp-upgrade service has been disabled. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...
[SECURITY] [DSA 2829-1] hplip security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2829-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff December 28, 2013 http://www.debian.org/security/faq -...
Debian Security Advisory DSA 2829-1 (hplip - several vulnerabilities)
Multiple vulnerabilities have been found in the HP Linux Printing and Imaging System: Insecure temporary files, insufficient permission checks in PackageKit and the insecure hp-upgrade service has been disabled. OpenVAS Vulnerability Test $Id: deb2829.nasl 6611 2017-07-07 12:07:20Z cfischer $...
DEBIAN-CVE-2013-6427
upgrade.py in the hp-upgrade service in HP Linux Imaging and Printing HPLIP 3.x through 3.13.11 launches a program from an http URL, which allows man-in-the-middle attackers to execute arbitrary code by gaining control over the client-server data stream...
CVE-2013-6427
upgrade.py in the hp-upgrade service in HP Linux Imaging and Printing HPLIP 3.x through 3.13.11 launches a program from an http URL, which allows man-in-the-middle attackers to execute arbitrary code by gaining control over the client-server data stream...
CVE-2013-6427
The CVE-2013-6427 vulnerability affects HP Linux Imaging and Printing (HPLIP) with the hp-upgrade service in 3.x up to 3.13.11, where upgrade.py launches a program from an http URL, enabling a man-in-the-middle attacker to execute arbitrary code by controlling the client–server data stream. Open-...
CVE-2013-6427
upgrade.py in the hp-upgrade service in HP Linux Imaging and Printing HPLIP 3.x through 3.13.11 launches a program from an http URL, which allows man-in-the-middle attackers to execute arbitrary code by gaining control over the client-server data stream...
CVE-2013-6427
upgrade.py in the hp-upgrade service in HP Linux Imaging and Printing HPLIP 3.x through 3.13.11 launches a program from an http URL, which allows man-in-the-middle attackers to execute arbitrary code by gaining control over the client-server data stream...
[slackware-security] hplip
New hplip packages are available for Slackware 14.0 to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: patches/packages/hplip-3.12.9-i486-4slack14.0.txz: Rebuilt. This update disables the automatic upgrade feature which can be easily fooled into downloading an...
Slackware 14.0 : hplip (SSA:2013-339-04)
New hplip packages are available for Slackware 14.0 to fix a security issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2013-339-04. The text itself is copyright C Slackware Linux, Inc...