Kevin Backhouse discovered that HPLIP incorrectly handled certain MDNS responses. A remote attacker could use this issue to cause HPLIP to crash, resulting in a denial of service, or possibly execute arbitrary code.
{ "availability": "No subscription required", "binaries": [ { "binary_version": "3.20.3+dfsg0-2ubuntu0.1", "binary_name": "hpijs-ppds" }, { "binary_version": "3.20.3+dfsg0-2ubuntu0.1", "binary_name": "hplip" }, { "binary_version": "3.20.3+dfsg0-2ubuntu0.1", "binary_name": "hplip-data" }, { "binary_version": "3.20.3+dfsg0-2ubuntu0.1", "binary_name": "hplip-dbgsym" }, { "binary_version": "3.20.3+dfsg0-2ubuntu0.1", "binary_name": "hplip-doc" }, { "binary_version": "3.20.3+dfsg0-2ubuntu0.1", "binary_name": "hplip-gui" }, { "binary_version": "3.20.3+dfsg0-2ubuntu0.1", "binary_name": "libhpmud-dev" }, { "binary_version": "3.20.3+dfsg0-2ubuntu0.1", "binary_name": "libhpmud0" }, { "binary_version": "3.20.3+dfsg0-2ubuntu0.1", "binary_name": "libhpmud0-dbgsym" }, { "binary_version": "3.20.3+dfsg0-2ubuntu0.1", "binary_name": "libsane-hpaio" }, { "binary_version": "3.20.3+dfsg0-2ubuntu0.1", "binary_name": "libsane-hpaio-dbgsym" }, { "binary_version": "3.20.3+dfsg0-2ubuntu0.1", "binary_name": "printer-driver-hpcups" }, { "binary_version": "3.20.3+dfsg0-2ubuntu0.1", "binary_name": "printer-driver-hpcups-dbgsym" }, { "binary_version": "3.20.3+dfsg0-2ubuntu0.1", "binary_name": "printer-driver-hpijs" }, { "binary_version": "3.20.3+dfsg0-2ubuntu0.1", "binary_name": "printer-driver-hpijs-dbgsym" }, { "binary_version": "3.20.3+dfsg0-2ubuntu0.1", "binary_name": "printer-driver-postscript-hp" }, { "binary_version": "3.20.3+dfsg0-2ubuntu0.1", "binary_name": "printer-driver-postscript-hp-dbgsym" } ] }