[ubuntu/saucy-proposed] hplip 3.13.9-0ubuntu2 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Wed Sep 18 17:51:14 UTC 2013 

hplip (3.13.9-0ubuntu2) saucy; urgency=low

  * SECURITY UPDATE: possible privilege escalation via policykit UID lookup
    race.
    - debian/patches/CVE-2013-4325.patch: pass system-bus-name as a subject
      instead of pid so policykit can get the information from the system
      bus in base/pkit.py.
    - CVE-2013-4325

Date: Wed, 18 Sep 2013 12:41:31 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/saucy/+source/hplip/3.13.9-0ubuntu2
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 18 Sep 2013 12:41:31 -0400
Source: hplip
Binary: hplip hplip-data printer-driver-postscript-hp hplip-gui hplip-dbg hplip-doc hpijs-ppds printer-driver-hpijs printer-driver-hpcups libhpmud0 libhpmud-dev libsane-hpaio
Architecture: source
Version: 3.13.9-0ubuntu2
Distribution: saucy
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 hpijs-ppds - HP Linux Printing and Imaging - HPIJS PPD files
 hplip      - HP Linux Printing and Imaging System (HPLIP)
 hplip-data - HP Linux Printing and Imaging - data files
 hplip-dbg  - HP Linux Printing and Imaging - debugging information
 hplip-doc  - HP Linux Printing and Imaging - documentation
 hplip-gui  - HP Linux Printing and Imaging - GUI utilities (Qt-based)
 libhpmud-dev - HP Multi-Point Transport Driver (hpmud) development libraries
 libhpmud0  - HP Multi-Point Transport Driver (hpmud) run-time libraries
 libsane-hpaio - HP SANE backend for multi-function peripherals
 printer-driver-hpcups - HP Linux Printing and Imaging - CUPS Raster driver (hpcups)
 printer-driver-hpijs - HP Linux Printing and Imaging - printer driver (hpijs)
 printer-driver-postscript-hp - HP Printers PostScript Descriptions
Changes: 
 hplip (3.13.9-0ubuntu2) saucy; urgency=low
 .
   * SECURITY UPDATE: possible privilege escalation via policykit UID lookup
     race.
     - debian/patches/CVE-2013-4325.patch: pass system-bus-name as a subject
       instead of pid so policykit can get the information from the system
       bus in base/pkit.py.
     - CVE-2013-4325
Checksums-Sha1: 
 082753bd0e92e9444c0146aed9aa2da149e1e916 3017 hplip_3.13.9-0ubuntu2.dsc
 af9b40ed2c7b5772b55b16e1d499fa1d29a0a909 109049 hplip_3.13.9-0ubuntu2.debian.tar.gz
Checksums-Sha256: 
 adc918f1ab892223236dcf9c45a614b975b8a18f2d5360ba8a9f540cef46b657 3017 hplip_3.13.9-0ubuntu2.dsc
 e0d41169a29bc1b3d9973add3d8d83c2039f377b8a778342e10fd97a4aed64c4 109049 hplip_3.13.9-0ubuntu2.debian.tar.gz
Files: 
 2678a262a630caacf66791f9ee1eac8e 3017 utils optional hplip_3.13.9-0ubuntu2.dsc
 c889197aee332821b89614102eb14a12 109049 utils optional hplip_3.13.9-0ubuntu2.debian.tar.gz
Original-Maintainer: Debian HPIJS and HPLIP maintainers <pkg-hpijs-devel at lists.alioth.debian.org>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (GNU/Linux)
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=xFg2
-----END PGP SIGNATURE-----

More information about the Saucy-changes mailing list