USN-2838-1

See a problem?
Source
https://ubuntu.com/security/notices/USN-2838-1
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/USN-2838-1.json
JSON Data
https://api.osv.dev/v1/vulns/USN-2838-1
Related
  • CVE-2015-8560
Published
2015-12-16T17:20:00.070555Z
Modified
2015-12-16T17:20:00.070555Z
Summary
cups-filters vulnerability
Details

Adam Chester discovered that the cups-filters foomatic-rip filter incorrectly stripped shell escape characters. A remote attacker could possibly use this issue to execute arbitrary code as the lp user.

References

Affected packages

Ubuntu:14.04:LTS / cups-filters

Package

Name
cups-filters

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.0.52-0ubuntu1.7

Ecosystem specific

{
    "availability": "No subscription needed",
    "binaries": [
        {
            "libcupsfilters-dev": "1.0.52-0ubuntu1.7",
            "cups-filters": "1.0.52-0ubuntu1.7",
            "libfontembed1": "1.0.52-0ubuntu1.7",
            "cups-filters-core-drivers": "1.0.52-0ubuntu1.7",
            "libfontembed-dev": "1.0.52-0ubuntu1.7",
            "libcupsfilters1": "1.0.52-0ubuntu1.7",
            "cups-browsed": "1.0.52-0ubuntu1.7"
        }
    ]
}