Kevin Backhouse discovered that HPLIP incorrectly handled certain MDNS responses. A remote attacker could use this issue to cause HPLIP to crash, resulting in a denial of service, or possibly execute arbitrary code.
{ "availability": "No subscription required", "binaries": [ { "binary_name": "hpijs-ppds", "binary_version": "3.20.3+dfsg0-2ubuntu0.1" }, { "binary_name": "hplip", "binary_version": "3.20.3+dfsg0-2ubuntu0.1" }, { "binary_name": "hplip-data", "binary_version": "3.20.3+dfsg0-2ubuntu0.1" }, { "binary_name": "hplip-dbgsym", "binary_version": "3.20.3+dfsg0-2ubuntu0.1" }, { "binary_name": "hplip-doc", "binary_version": "3.20.3+dfsg0-2ubuntu0.1" }, { "binary_name": "hplip-gui", "binary_version": "3.20.3+dfsg0-2ubuntu0.1" }, { "binary_name": "libhpmud-dev", "binary_version": "3.20.3+dfsg0-2ubuntu0.1" }, { "binary_name": "libhpmud0", "binary_version": "3.20.3+dfsg0-2ubuntu0.1" }, { "binary_name": "libhpmud0-dbgsym", "binary_version": "3.20.3+dfsg0-2ubuntu0.1" }, { "binary_name": "libsane-hpaio", "binary_version": "3.20.3+dfsg0-2ubuntu0.1" }, { "binary_name": "libsane-hpaio-dbgsym", "binary_version": "3.20.3+dfsg0-2ubuntu0.1" }, { "binary_name": "printer-driver-hpcups", "binary_version": "3.20.3+dfsg0-2ubuntu0.1" }, { "binary_name": "printer-driver-hpcups-dbgsym", "binary_version": "3.20.3+dfsg0-2ubuntu0.1" }, { "binary_name": "printer-driver-hpijs", "binary_version": "3.20.3+dfsg0-2ubuntu0.1" }, { "binary_name": "printer-driver-hpijs-dbgsym", "binary_version": "3.20.3+dfsg0-2ubuntu0.1" }, { "binary_name": "printer-driver-postscript-hp", "binary_version": "3.20.3+dfsg0-2ubuntu0.1" }, { "binary_name": "printer-driver-postscript-hp-dbgsym", "binary_version": "3.20.3+dfsg0-2ubuntu0.1" } ] }