Debian Hplip vulnerabilities

CVE-2020-6923 [MEDIUM] CVE-2020-6923: hplip - The HP Linux Imaging and Printing (HPLIP) software may potentially be affected b... The HP Linux Imaging and Printing (HPLIP) software may potentially be affected by memory buffer overflow. Scope: local bookworm: resolved (fixed in 3.20.9+dfsg0-3) bullseye: resolved (fixed in 3.20.9+dfsg0-3) sid: resolved (fixed in 3.20.9+dfsg0-3) trixie: resolved (fixed in 3.20.9+dfsg0-3)

CVE-2015-0839 [HIGH] CVE-2015-0839: hplip - The hp-plugin utility in HP Linux Imaging and Printing (HPLIP) makes it easier f... The hp-plugin utility in HP Linux Imaging and Printing (HPLIP) makes it easier for man-in-the-middle attackers to execute arbitrary code by leveraging use of a short GPG key id from a keyserver to verify print plugin downloads. Scope: local bookworm: resolved (fixed in 3.15.11+repack0-1) bullseye: resolved (fixed in 3.15.11+repack0-1) sid: resolved (fixed in 3.15.11+rep

CVE-2013-6427 [MEDIUM] CVE-2013-6427: hplip - upgrade.py in the hp-upgrade service in HP Linux Imaging and Printing (HPLIP) 3.... upgrade.py in the hp-upgrade service in HP Linux Imaging and Printing (HPLIP) 3.x through 3.13.11 launches a program from an http URL, which allows man-in-the-middle attackers to execute arbitrary code by gaining control over the client-server data stream. Scope: local bookworm: resolved (fixed in 3.13.11-2) bullseye: resolved (fixed in 3.13.11-2) sid: resolved (fixed

CVE-2013-4325 [MEDIUM] CVE-2013-4325: hplip - The check_permission_v1 function in base/pkit.py in HP Linux Imaging and Printin... The check_permission_v1 function in base/pkit.py in HP Linux Imaging and Printing (HPLIP) through 3.13.9 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a (1) setuid process or (2) pkexec process. Scope: local bookwo

CVE-2013-0200 [LOW] CVE-2013-0200: hplip - HP Linux Imaging and Printing (HPLIP) through 3.12.4 allows local users to overw... HP Linux Imaging and Printing (HPLIP) through 3.12.4 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/hpcupsfilterc_#.bmp, (2) /tmp/hpcupsfilterk_#.bmp, (3) /tmp/hpcups_job#.out, (4) /tmp/hpijs_#####.out, or (5) /tmp/hpps_job#.out temporary file, a different vulnerability than CVE-2011-2722. Scope: local bookworm: resolved (fixed in 3.

CVE-2013-6402 [LOW] CVE-2013-6402: hplip - base/pkit.py in HP Linux Imaging and Printing (HPLIP) through 3.13.11 allows loc... base/pkit.py in HP Linux Imaging and Printing (HPLIP) through 3.13.11 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/hp-pkservice.log temporary file. Scope: local bookworm: resolved (fixed in 3.13.11-2.1) bullseye: resolved (fixed in 3.13.11-2.1) sid: resolved (fixed in 3.13.11-2.1) trixie: resolved (fixed in 3.13.11-2.1)

CVE-2012-6108 [LOW] CVE-2012-6108: hplip - HP Linux Imaging and Printing (HPLIP) before 3.13.2 uses world-writable permissi... HP Linux Imaging and Printing (HPLIP) before 3.13.2 uses world-writable permissions for /var/log/hp and /var/log/hp/tmp, which allows local users to delete log files via standard filesystem operations. Scope: local bookworm: resolved bullseye: resolved sid: resolved trixie: resolved

CVE-2011-2697 [MEDIUM] CVE-2011-2697: foomatic-filters - foomatic-rip-hplip in HP Linux Imaging and Printing (HPLIP) 3.11.5 allows remote... foomatic-rip-hplip in HP Linux Imaging and Printing (HPLIP) 3.11.5 allows remote attackers to execute arbitrary code via a crafted *FoomaticRIPCommandLine field in a .ppd file. Scope: local bookworm: resolved (fixed in 4.0) bullseye: resolved (fixed in 4.0) forky: resolved (fixed in 4.0) sid: resolved (fixed in 4.0) trixie: resolved (fixed in 4.0)

CVE-2011-2722 [LOW] CVE-2011-2722: hplip - The send_data_to_stdout function in prnt/hpijs/hpcupsfax.cpp in HP Linux Imaging... The send_data_to_stdout function in prnt/hpijs/hpcupsfax.cpp in HP Linux Imaging and Printing (HPLIP) 3.x before 3.11.10 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/hpcupsfax.out temporary file. Scope: local bookworm: resolved (fixed in 3.11.10-1) bullseye: resolved (fixed in 3.11.10-1) sid: resolved (fixed in 3.11.10-1) trixie: resol

CVE-2010-4267 [HIGH] CVE-2010-4267: hplip - Stack-based buffer overflow in the hpmud_get_pml function in io/hpmud/pml.c in H... Stack-based buffer overflow in the hpmud_get_pml function in io/hpmud/pml.c in Hewlett-Packard Linux Imaging and Printing (HPLIP) 1.6.7, 3.9.8, 3.10.9, and probably other versions allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted SNMP response with a large length value. Scope: local bookworm: resolved (fixed i

CVE-2009-0122 [MEDIUM] CVE-2009-0122: hplip - hplip.postinst in HP Linux Imaging and Printing (HPLIP) 2.7.7 and 2.8.2 on Ubunt... hplip.postinst in HP Linux Imaging and Printing (HPLIP) 2.7.7 and 2.8.2 on Ubuntu allows local users to change the ownership of arbitrary files via unspecified manipulations in advance of an HPLIP installation or upgrade by an administrator, related to the product's attempt to correct the ownership of its configuration files within home directories. Scope: local bookw

CVE-2008-2941 [MEDIUM] CVE-2008-2941: hplip - The hpssd message parser in hpssd.py in HP Linux Imaging and Printing (HPLIP) 1.... The hpssd message parser in hpssd.py in HP Linux Imaging and Printing (HPLIP) 1.6.7 allows local users to cause a denial of service (process stop) via a crafted packet, as demonstrated by sending "msg=0" to TCP port 2207. Scope: local bookworm: resolved (fixed in 2.8.6-1) bullseye: resolved (fixed in 2.8.6-1) sid: resolved (fixed in 2.8.6-1) trixie: resolved (fixed in

CVE-2008-2940 [HIGH] CVE-2008-2940: hplip - The alert-mailing implementation in HP Linux Imaging and Printing (HPLIP) 1.6.7 ... The alert-mailing implementation in HP Linux Imaging and Printing (HPLIP) 1.6.7 allows local users to gain privileges and send e-mail messages from the root account via vectors related to the setalerts message, and lack of validation of the device URI associated with an event message. Scope: local bookworm: resolved (fixed in 2.8.6-1) bullseye: resolved (fixed in 2.8.6-

CVE-2007-5208 [HIGH] CVE-2007-5208: hplip - hpssd in Hewlett-Packard Linux Imaging and Printing Project (hplip) 1.x and 2.x ... hpssd in Hewlett-Packard Linux Imaging and Printing Project (hplip) 1.x and 2.x before 2.7.10 allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a from address, which is not properly handled when invoking sendmail. Scope: local bookworm: resolved (fixed in 1.6.10-4.3) bullseye: resolved (fixed in 1.6.10-4.3) sid: resolved (fixed