Oval Definition:	oval:org.mitre.oval:def:25107
Revision Date: 2014-09-08 Version: 5 Title: SUSE-SU-2014:0188-2 -- Security update for hplip Description: hplip was updated to fix three security issues: * CVE-2013-0200: Some local file overwrite problems viapredictable /tmp filenames were fixed. * CVE-2013-4325: hplip used an insecure polkit DBUS API(polkit-process subject race condition) which could lead tolocal privilege escalation. * CVE-2013-6402: hplip uses arbitrary filecreation/overwrite (via hardcoded file name/tmp/hp-pkservice.log). Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2013-0200 CVE-2013-4325 CVE-2013-6402 SUSE-SU-2014:0188-2 Platform(s): SUSE Linux Enterprise Desktop 11 SUSE Linux Enterprise Server 11 Product(s): hplip Definition Synopsis Operation system section SUSE Linux Enterprise Server 11.x is installed OR SUSE Linux Enterprise Desktop 11.x is installed AND Packages match section hplip RPM is earlier than 0:3.11.10-0.6.11.1 OR hplip-hpijs RPM is earlier than 0:3.11.10-0.6.11.1
BACK