[ubuntu/lucid-security] hplip 3.10.2-2ubuntu2.4 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Mon Sep 30 18:31:08 UTC 2013
hplip (3.10.2-2ubuntu2.4) lucid-security; urgency=low
* SECURITY UPDATE: arbitrary file overwrite via temp file vulnerability
- debian/patches/CVE-2011-2722.dpatch: remove insecure code from
prnt/hpijs/hpcupsfax.cpp.
- CVE-2011-2722
* SECURITY UPDATE: arbitrary file overwrite via temp file vulnerability
- debian/patches/CVE-2013-0200.dpatch: use unpredictable temp file names
in prnt/hpcups/HPCupsFilter.cpp, prnt/hpcups/SystemServices.cpp,
prnt/hpijs/hpijs.cpp.
- CVE-2013-0200
* debian/patches/00patch-opts: remove deprecated U option so we can
manipulate this package in saucy.
Date: 2013-09-27 17:05:16.080526+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/lucid/+source/hplip/3.10.2-2ubuntu2.4
-------------- next part --------------
Sorry, changesfile not available.
More information about the Lucid-changes
mailing list