| Revision Date: | 2014-09-08 | Version: | 4 |
| Title: | SUSE-SU-2014:0188-1 -- Security update for hplip |
| Description: | hplip was updated to fix three security issues: * CVE-2013-0200: Some local file overwrite problems viapredictable /tmp filenames were fixed. * CVE-2013-4325: hplip used an insecure polkit DBUS API(polkit-process subject race condition) which could lead tolocal privilege escalation. * CVE-2013-6402: hplip uses arbitrary filecreation/overwrite (via hardcoded file name/tmp/hp-pkservice.log) |
| Family: | unix | Class: | patch |
| Status: | ACCEPTED | Reference(s): | CVE-2013-0200
CVE-2013-4325
CVE-2013-6402
SUSE-SU-2014:0188-1
|
| Platform(s): | SUSE Linux Enterprise Desktop 11
SUSE Linux Enterprise Server 11
| Product(s): | hplip
|
| Definition Synopsis |
| Operation system section SUSE Linux Enterprise Server 11.x is installed
OR SUSE Linux Enterprise Desktop 11.x is installed
AND Packages match section
hplip RPM is earlier than 0:3.11.10-0.6.11.1
OR hplip-hpijs RPM is earlier than 0:3.11.10-0.6.11.1
|