Debian Foomatic-Filters vulnerabilities

CVE-2015-8560 [HIGH] CVE-2015-8560: cups-filters - Incomplete blacklist vulnerability in util.c in foomatic-rip in cups-filters 1.0... Incomplete blacklist vulnerability in util.c in foomatic-rip in cups-filters 1.0.42 before 1.4.0 and in foomatic-filters in Foomatic 4.0.x allows remote attackers to execute arbitrary commands via a ; (semicolon) character in a print job, a different vulnerability than CVE-2015-8327. Scope: local bookworm: resolved (fixed in 1.4.0-1) bullseye: resolved (fixed in

CVE-2015-8327 [HIGH] CVE-2015-8327: cups-filters - Incomplete blacklist vulnerability in util.c in foomatic-rip in cups-filters 1.0... Incomplete blacklist vulnerability in util.c in foomatic-rip in cups-filters 1.0.42 before 1.2.0 and in foomatic-filters in Foomatic 4.0.x allows remote attackers to execute arbitrary commands via ` (backtick) characters in a print job. Scope: local bookworm: resolved (fixed in 1.2.0-1) bullseye: resolved (fixed in 1.2.0-1) forky: resolved (fixed in 1.2.0-1) sid:

CVE-2011-2964 [MEDIUM] CVE-2011-2964: foomatic-filters - foomaticrip.c in foomatic-rip in foomatic-filters in Foomatic 4.0.6 allows remot... foomaticrip.c in foomatic-rip in foomatic-filters in Foomatic 4.0.6 allows remote attackers to execute arbitrary code via a crafted *FoomaticRIPCommandLine field in a .ppd file, a different vulnerability than CVE-2011-2697. Scope: local bookworm: resolved (fixed in 4.0.9-1) bullseye: resolved (fixed in 4.0.9-1) forky: resolved (fixed in 4.0.9-1) sid: resolv

CVE-2011-2697 [MEDIUM] CVE-2011-2697: foomatic-filters - foomatic-rip-hplip in HP Linux Imaging and Printing (HPLIP) 3.11.5 allows remote... foomatic-rip-hplip in HP Linux Imaging and Printing (HPLIP) 3.11.5 allows remote attackers to execute arbitrary code via a crafted *FoomaticRIPCommandLine field in a .ppd file. Scope: local bookworm: resolved (fixed in 4.0) bullseye: resolved (fixed in 4.0) forky: resolved (fixed in 4.0) sid: resolved (fixed in 4.0) trixie: resolved (fixed in 4.0)

CVE-2011-2923 [MEDIUM] CVE-2011-2923: foomatic-filters - foomatic-rip filter, all versions, used insecurely creates temporary files for s... foomatic-rip filter, all versions, used insecurely creates temporary files for storage of PostScript data by rendering the data when the debug mode was enabled. This flaw may be exploited by a local attacker to conduct symlink attacks by overwriting arbitrary files accessible with the privileges of the user running the foomatic-rip universal print filter. S

CVE-2011-2924 [MEDIUM] CVE-2011-2924: foomatic-filters - foomatic-rip filter v4.0.12 and prior used insecurely creates temporary files fo... foomatic-rip filter v4.0.12 and prior used insecurely creates temporary files for storage of PostScript data by rendering the data when the debug mode was enabled. This flaw may be exploited by a local attacker to conduct symlink attacks by overwriting arbitrary files accessible with the privileges of the user running the foomatic-rip universal print filter

CVE-2010-5325 [CRITICAL] CVE-2010-5325: cups-filters - Heap-based buffer overflow in the unhtmlify function in foomatic-rip in foomatic... Heap-based buffer overflow in the unhtmlify function in foomatic-rip in foomatic-filters before 4.0.6 allows remote attackers to cause a denial of service (memory corruption and crash) or possibly execute arbitrary code via a long job title. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2004-0801 [HIGH] CVE-2004-0801: foomatic-filters - Unknown vulnerability in foomatic-rip in Foomatic before 3.0.2 allows local user... Unknown vulnerability in foomatic-rip in Foomatic before 3.0.2 allows local users or remote attackers with access to CUPS to execute arbitrary commands. Scope: local bookworm: resolved (fixed in 3.0.2) bullseye: resolved (fixed in 3.0.2) forky: resolved (fixed in 3.0.2) sid: resolved (fixed in 3.0.2) trixie: resolved (fixed in 3.0.2)