MGASA-2015-0132

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2015-0132.html

Import Source

https://advisories.mageia.org/MGASA-2015-0132.json

JSON Data

https://api.osv.dev/v1/vulns/MGASA-2015-0132

Related

CVE-2015-2265

Published

2015-04-04T10:45:56Z

Modified

2015-04-04T10:32:20Z

Summary

Updated cups-filters packages fix CVE-2015-2265

Details

Updated cups-filters package fixes security vulnerability:

cups-browsed in cups-filters before 1.0.66 contained a bug in the removebadchars() function, where it failed to reliably filter out illegal characters if there were two or more subsequent illegal characters, allowing execution of arbitrary commands with the rights of the "lp" user, using forged print service announcements on DNS-SD servers (CVE-2015-2265).

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:4 / cups-filters

Package

Name: cups-filters
Purl: pkg:rpm/mageia/cups-filters?distro=mageia-4

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.0.53-1.1.mga4

Ecosystem specific

{
    "section": "core"
}