Summary
Detail | |||
---|---|---|---|
Vendor | Linuxfoundation | First view | 2015-12-17 |
Product | Foomatic-Filters | Last view | 2019-11-19 |
Version | 4.0.12 | Type | Application |
Update | * | ||
Edition | * | ||
Language | * | ||
Sofware Edition | * | ||
Target Software | * | ||
Target Hardware | * | ||
Other | * | ||
CPE Product | cpe:2.3:a:linuxfoundation:foomatic-filters |
Activity : Overall
Related : CVE
Date | Alert | Description | |
---|---|---|---|
5.5 | 2019-11-19 | CVE-2011-2924 | foomatic-rip filter v4.0.12 and prior used insecurely creates temporary files for storage of PostScript data by rendering the data when the debug mode was enabled. This flaw may be exploited by a local attacker to conduct symlink attacks by overwriting arbitrary files accessible with the privileges of the user running the foomatic-rip universal print filter. |
7.3 | 2016-04-14 | CVE-2015-8560 | Incomplete blacklist vulnerability in util.c in foomatic-rip in cups-filters 1.0.42 before 1.4.0 and in foomatic-filters in Foomatic 4.0.x allows remote attackers to execute arbitrary commands via a ; (semicolon) character in a print job, a different vulnerability than CVE-2015-8327. |
7.5 | 2015-12-17 | CVE-2015-8327 | Incomplete blacklist vulnerability in util.c in foomatic-rip in cups-filters 1.0.42 before 1.2.0 and in foomatic-filters in Foomatic 4.0.x allows remote attackers to execute arbitrary commands via ` (backtick) characters in a print job. |
CWE : Common Weakness Enumeration
% | id | Name |
---|---|---|
100% (1) | CWE-59 | Improper Link Resolution Before File Access ('Link Following') |
OpenVAS Exploits
id | Description |
---|---|
2012-04-02 | Name : Fedora Update for foomatic FEDORA-2011-11118 File : nvt/gb_fedora_2011_11118_foomatic_fc16.nasl |
2011-09-27 | Name : Fedora Update for foomatic FEDORA-2011-11196 File : nvt/gb_fedora_2011_11196_foomatic_fc15.nasl |
2011-09-27 | Name : Fedora Update for foomatic FEDORA-2011-11205 File : nvt/gb_fedora_2011_11205_foomatic_fc14.nasl |
Nessus® Vulnerability Scanner
id | Description |
---|---|
2016-04-22 | Name: The remote Amazon Linux AMI host is missing a security update. File: ala_ALAS-2016-690.nasl - Type: ACT_GATHER_INFO |
2016-03-24 | Name: The remote Scientific Linux host is missing one or more security updates. File: sl_20160323_foomatic_on_SL6_x.nasl - Type: ACT_GATHER_INFO |
2016-03-24 | Name: The remote OracleVM host is missing a security update. File: oraclevm_OVMSA-2016-0040.nasl - Type: ACT_GATHER_INFO |
2016-03-24 | Name: The remote CentOS host is missing a security update. File: centos_RHSA-2016-0491.nasl - Type: ACT_GATHER_INFO |
2016-03-23 | Name: The remote Red Hat host is missing one or more security updates. File: redhat-RHSA-2016-0491.nasl - Type: ACT_GATHER_INFO |
2016-03-23 | Name: The remote Oracle Linux host is missing a security update. File: oraclelinux_ELSA-2016-0491.nasl - Type: ACT_GATHER_INFO |
2016-03-04 | Name: The remote Fedora host is missing a security update. File: fedora_2015-a108c34086.nasl - Type: ACT_GATHER_INFO |
2016-03-04 | Name: The remote Fedora host is missing a security update. File: fedora_2015-998911cf3f.nasl - Type: ACT_GATHER_INFO |
2016-01-25 | Name: The remote openSUSE host is missing a security update. File: openSUSE-2016-67.nasl - Type: ACT_GATHER_INFO |
2016-01-14 | Name: The remote SUSE host is missing one or more security updates. File: suse_SU-2016-0112-1.nasl - Type: ACT_GATHER_INFO |
2016-01-14 | Name: The remote SUSE host is missing one or more security updates. File: suse_SU-2016-0092-1.nasl - Type: ACT_GATHER_INFO |
2015-12-29 | Name: The remote openSUSE host is missing a security update. File: openSUSE-2015-954.nasl - Type: ACT_GATHER_INFO |
2015-12-22 | Name: The remote Debian host is missing a security-related update. File: debian_DSA-3429.nasl - Type: ACT_GATHER_INFO |
2015-12-21 | Name: The remote Debian host is missing a security update. File: debian_DLA-371.nasl - Type: ACT_GATHER_INFO |
2015-12-18 | Name: The remote FreeBSD host is missing one or more security-related updates. File: freebsd_pkg_7329938ba4e611e5b86414dae9d210b8.nasl - Type: ACT_GATHER_INFO |
2015-12-18 | Name: The remote FreeBSD host is missing one or more security-related updates. File: freebsd_pkg_6dbae1a8a4e611e5b86414dae9d210b8.nasl - Type: ACT_GATHER_INFO |
2015-12-17 | Name: The remote Ubuntu host is missing a security-related patch. File: ubuntu_USN-2838-2.nasl - Type: ACT_GATHER_INFO |
2015-12-17 | Name: The remote Ubuntu host is missing a security-related patch. File: ubuntu_USN-2838-1.nasl - Type: ACT_GATHER_INFO |
2015-12-16 | Name: The remote Debian host is missing a security-related update. File: debian_DSA-3419.nasl - Type: ACT_GATHER_INFO |
2015-12-10 | Name: The remote Debian host is missing a security update. File: debian_DLA-365.nasl - Type: ACT_GATHER_INFO |
2015-12-08 | Name: The remote Ubuntu host is missing a security-related patch. File: ubuntu_USN-2831-2.nasl - Type: ACT_GATHER_INFO |
2015-12-08 | Name: The remote Ubuntu host is missing a security-related patch. File: ubuntu_USN-2831-1.nasl - Type: ACT_GATHER_INFO |
2015-12-03 | Name: The remote Debian host is missing a security-related update. File: debian_DSA-3411.nasl - Type: ACT_GATHER_INFO |
2011-09-26 | Name: The remote Fedora host is missing a security update. File: fedora_2011-11205.nasl - Type: ACT_GATHER_INFO |
2011-09-26 | Name: The remote Fedora host is missing a security update. File: fedora_2011-11196.nasl - Type: ACT_GATHER_INFO |