rhsa-2013_0500
Vulnerability from csaf_redhat
Published
2013-02-20 16:17
Modified
2024-11-22 05:37
Summary
Red Hat Security Advisory: hplip security, bug fix and enhancement update
Notes
Topic
Updated hplip packages that fix several security issues, multiple bugs, and
add various enhancements are now available for Red Hat Enterprise Linux 6.
The Red Hat Security Response Team has rated this update as having low
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.
Details
The hplip packages contain the Hewlett-Packard Linux Imaging and Printing
Project (HPLIP), which provides drivers for Hewlett-Packard printers and
multi-function peripherals.
Several temporary file handling flaws were found in HPLIP. A local attacker
could use these flaws to perform a symbolic link attack, overwriting
arbitrary files accessible to a process using HPLIP. (CVE-2013-0200,
CVE-2011-2722)
The CVE-2013-0200 issues were discovered by Tim Waugh of Red Hat.
The hplip packages have been upgraded to upstream version 3.12.4, which
provides a number of bug fixes and enhancements over the previous version.
(BZ#731900)
This update also fixes the following bugs:
* Previously, the hpijs package required the obsolete cupsddk-drivers
package, which was provided by the cups package. Under certain
circumstances, this dependency caused hpijs installation to fail. This
bug has been fixed and hpijs no longer requires cupsddk-drivers.
(BZ#829453)
* The configuration of the Scanner Access Now Easy (SANE) back end is
located in the /etc/sane.d/dll.d/ directory, however, the hp-check
utility checked only the /etc/sane.d/dll.conf file. Consequently,
hp-check checked for correct installation, but incorrectly reported a
problem with the way the SANE back end was installed. With this update,
hp-check properly checks for installation problems in both locations as
expected. (BZ#683007)
All users of hplip are advised to upgrade to these updated packages, which
fix these issues and add these enhancements.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Low"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated hplip packages that fix several security issues, multiple bugs, and\nadd various enhancements are now available for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having low\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The hplip packages contain the Hewlett-Packard Linux Imaging and Printing\nProject (HPLIP), which provides drivers for Hewlett-Packard printers and\nmulti-function peripherals.\n\nSeveral temporary file handling flaws were found in HPLIP. A local attacker\ncould use these flaws to perform a symbolic link attack, overwriting\narbitrary files accessible to a process using HPLIP. (CVE-2013-0200,\nCVE-2011-2722)\n\nThe CVE-2013-0200 issues were discovered by Tim Waugh of Red Hat.\n\nThe hplip packages have been upgraded to upstream version 3.12.4, which\nprovides a number of bug fixes and enhancements over the previous version.\n(BZ#731900)\n\nThis update also fixes the following bugs:\n\n* Previously, the hpijs package required the obsolete cupsddk-drivers\npackage, which was provided by the cups package. Under certain\ncircumstances, this dependency caused hpijs installation to fail. This\nbug has been fixed and hpijs no longer requires cupsddk-drivers.\n(BZ#829453)\n\n* The configuration of the Scanner Access Now Easy (SANE) back end is\nlocated in the /etc/sane.d/dll.d/ directory, however, the hp-check\nutility checked only the /etc/sane.d/dll.conf file. Consequently,\nhp-check checked for correct installation, but incorrectly reported a\nproblem with the way the SANE back end was installed. With this update,\nhp-check properly checks for installation problems in both locations as\nexpected. (BZ#683007)\n\nAll users of hplip are advised to upgrade to these updated packages, which\nfix these issues and add these enhancements.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2013:0500",
"url": "https://access.redhat.com/errata/RHSA-2013:0500"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#low",
"url": "https://access.redhat.com/security/updates/classification/#low"
},
{
"category": "external",
"summary": "683007",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=683007"
},
{
"category": "external",
"summary": "725830",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=725830"
},
{
"category": "external",
"summary": "731900",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=731900"
},
{
"category": "external",
"summary": "902163",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=902163"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0500.json"
}
],
"title": "Red Hat Security Advisory: hplip security, bug fix and enhancement update",
"tracking": {
"current_release_date": "2024-11-22T05:37:38+00:00",
"generator": {
"date": "2024-11-22T05:37:38+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2013:0500",
"initial_release_date": "2013-02-20T16:17:00+00:00",
"revision_history": [
{
"date": "2013-02-20T16:17:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2013-02-20T16:18:15+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T05:37:38+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "hplip-debuginfo-0:3.12.4-4.el6.x86_64",
"product": {
"name": "hplip-debuginfo-0:3.12.4-4.el6.x86_64",
"product_id": "hplip-debuginfo-0:3.12.4-4.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/hplip-debuginfo@3.12.4-4.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "hplip-gui-0:3.12.4-4.el6.x86_64",
"product": {
"name": "hplip-gui-0:3.12.4-4.el6.x86_64",
"product_id": "hplip-gui-0:3.12.4-4.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/hplip-gui@3.12.4-4.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "hplip-libs-0:3.12.4-4.el6.x86_64",
"product": {
"name": "hplip-libs-0:3.12.4-4.el6.x86_64",
"product_id": "hplip-libs-0:3.12.4-4.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/hplip-libs@3.12.4-4.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "hplip-common-0:3.12.4-4.el6.x86_64",
"product": {
"name": "hplip-common-0:3.12.4-4.el6.x86_64",
"product_id": "hplip-common-0:3.12.4-4.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/hplip-common@3.12.4-4.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "hplip-0:3.12.4-4.el6.x86_64",
"product": {
"name": "hplip-0:3.12.4-4.el6.x86_64",
"product_id": "hplip-0:3.12.4-4.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/hplip@3.12.4-4.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libsane-hpaio-0:3.12.4-4.el6.x86_64",
"product": {
"name": "libsane-hpaio-0:3.12.4-4.el6.x86_64",
"product_id": "libsane-hpaio-0:3.12.4-4.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libsane-hpaio@3.12.4-4.el6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "hpijs-1:3.12.4-4.el6.x86_64",
"product": {
"name": "hpijs-1:3.12.4-4.el6.x86_64",
"product_id": "hpijs-1:3.12.4-4.el6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/hpijs@3.12.4-4.el6?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "hplip-debuginfo-0:3.12.4-4.el6.i686",
"product": {
"name": "hplip-debuginfo-0:3.12.4-4.el6.i686",
"product_id": "hplip-debuginfo-0:3.12.4-4.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/hplip-debuginfo@3.12.4-4.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "hplip-libs-0:3.12.4-4.el6.i686",
"product": {
"name": "hplip-libs-0:3.12.4-4.el6.i686",
"product_id": "hplip-libs-0:3.12.4-4.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/hplip-libs@3.12.4-4.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "hplip-gui-0:3.12.4-4.el6.i686",
"product": {
"name": "hplip-gui-0:3.12.4-4.el6.i686",
"product_id": "hplip-gui-0:3.12.4-4.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/hplip-gui@3.12.4-4.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "hplip-common-0:3.12.4-4.el6.i686",
"product": {
"name": "hplip-common-0:3.12.4-4.el6.i686",
"product_id": "hplip-common-0:3.12.4-4.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/hplip-common@3.12.4-4.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "hplip-0:3.12.4-4.el6.i686",
"product": {
"name": "hplip-0:3.12.4-4.el6.i686",
"product_id": "hplip-0:3.12.4-4.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/hplip@3.12.4-4.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "libsane-hpaio-0:3.12.4-4.el6.i686",
"product": {
"name": "libsane-hpaio-0:3.12.4-4.el6.i686",
"product_id": "libsane-hpaio-0:3.12.4-4.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libsane-hpaio@3.12.4-4.el6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "hpijs-1:3.12.4-4.el6.i686",
"product": {
"name": "hpijs-1:3.12.4-4.el6.i686",
"product_id": "hpijs-1:3.12.4-4.el6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/hpijs@3.12.4-4.el6?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "hplip-0:3.12.4-4.el6.src",
"product": {
"name": "hplip-0:3.12.4-4.el6.src",
"product_id": "hplip-0:3.12.4-4.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/hplip@3.12.4-4.el6?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "hplip-debuginfo-0:3.12.4-4.el6.ppc64",
"product": {
"name": "hplip-debuginfo-0:3.12.4-4.el6.ppc64",
"product_id": "hplip-debuginfo-0:3.12.4-4.el6.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/hplip-debuginfo@3.12.4-4.el6?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "hplip-gui-0:3.12.4-4.el6.ppc64",
"product": {
"name": "hplip-gui-0:3.12.4-4.el6.ppc64",
"product_id": "hplip-gui-0:3.12.4-4.el6.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/hplip-gui@3.12.4-4.el6?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "hplip-libs-0:3.12.4-4.el6.ppc64",
"product": {
"name": "hplip-libs-0:3.12.4-4.el6.ppc64",
"product_id": "hplip-libs-0:3.12.4-4.el6.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/hplip-libs@3.12.4-4.el6?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "hplip-common-0:3.12.4-4.el6.ppc64",
"product": {
"name": "hplip-common-0:3.12.4-4.el6.ppc64",
"product_id": "hplip-common-0:3.12.4-4.el6.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/hplip-common@3.12.4-4.el6?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "hplip-0:3.12.4-4.el6.ppc64",
"product": {
"name": "hplip-0:3.12.4-4.el6.ppc64",
"product_id": "hplip-0:3.12.4-4.el6.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/hplip@3.12.4-4.el6?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "libsane-hpaio-0:3.12.4-4.el6.ppc64",
"product": {
"name": "libsane-hpaio-0:3.12.4-4.el6.ppc64",
"product_id": "libsane-hpaio-0:3.12.4-4.el6.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libsane-hpaio@3.12.4-4.el6?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "hpijs-1:3.12.4-4.el6.ppc64",
"product": {
"name": "hpijs-1:3.12.4-4.el6.ppc64",
"product_id": "hpijs-1:3.12.4-4.el6.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/hpijs@3.12.4-4.el6?arch=ppc64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "hplip-debuginfo-0:3.12.4-4.el6.ppc",
"product": {
"name": "hplip-debuginfo-0:3.12.4-4.el6.ppc",
"product_id": "hplip-debuginfo-0:3.12.4-4.el6.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/hplip-debuginfo@3.12.4-4.el6?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "hplip-libs-0:3.12.4-4.el6.ppc",
"product": {
"name": "hplip-libs-0:3.12.4-4.el6.ppc",
"product_id": "hplip-libs-0:3.12.4-4.el6.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/hplip-libs@3.12.4-4.el6?arch=ppc"
}
}
}
],
"category": "architecture",
"name": "ppc"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "hpijs-1:3.12.4-4.el6.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client:hpijs-1:3.12.4-4.el6.i686"
},
"product_reference": "hpijs-1:3.12.4-4.el6.i686",
"relates_to_product_reference": "6Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hpijs-1:3.12.4-4.el6.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client:hpijs-1:3.12.4-4.el6.ppc64"
},
"product_reference": "hpijs-1:3.12.4-4.el6.ppc64",
"relates_to_product_reference": "6Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hpijs-1:3.12.4-4.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client:hpijs-1:3.12.4-4.el6.x86_64"
},
"product_reference": "hpijs-1:3.12.4-4.el6.x86_64",
"relates_to_product_reference": "6Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-0:3.12.4-4.el6.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client:hplip-0:3.12.4-4.el6.i686"
},
"product_reference": "hplip-0:3.12.4-4.el6.i686",
"relates_to_product_reference": "6Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-0:3.12.4-4.el6.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client:hplip-0:3.12.4-4.el6.ppc64"
},
"product_reference": "hplip-0:3.12.4-4.el6.ppc64",
"relates_to_product_reference": "6Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-0:3.12.4-4.el6.src as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client:hplip-0:3.12.4-4.el6.src"
},
"product_reference": "hplip-0:3.12.4-4.el6.src",
"relates_to_product_reference": "6Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-0:3.12.4-4.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client:hplip-0:3.12.4-4.el6.x86_64"
},
"product_reference": "hplip-0:3.12.4-4.el6.x86_64",
"relates_to_product_reference": "6Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-common-0:3.12.4-4.el6.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client:hplip-common-0:3.12.4-4.el6.i686"
},
"product_reference": "hplip-common-0:3.12.4-4.el6.i686",
"relates_to_product_reference": "6Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-common-0:3.12.4-4.el6.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client:hplip-common-0:3.12.4-4.el6.ppc64"
},
"product_reference": "hplip-common-0:3.12.4-4.el6.ppc64",
"relates_to_product_reference": "6Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-common-0:3.12.4-4.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client:hplip-common-0:3.12.4-4.el6.x86_64"
},
"product_reference": "hplip-common-0:3.12.4-4.el6.x86_64",
"relates_to_product_reference": "6Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-debuginfo-0:3.12.4-4.el6.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client:hplip-debuginfo-0:3.12.4-4.el6.i686"
},
"product_reference": "hplip-debuginfo-0:3.12.4-4.el6.i686",
"relates_to_product_reference": "6Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-debuginfo-0:3.12.4-4.el6.ppc as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client:hplip-debuginfo-0:3.12.4-4.el6.ppc"
},
"product_reference": "hplip-debuginfo-0:3.12.4-4.el6.ppc",
"relates_to_product_reference": "6Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-debuginfo-0:3.12.4-4.el6.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client:hplip-debuginfo-0:3.12.4-4.el6.ppc64"
},
"product_reference": "hplip-debuginfo-0:3.12.4-4.el6.ppc64",
"relates_to_product_reference": "6Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-debuginfo-0:3.12.4-4.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client:hplip-debuginfo-0:3.12.4-4.el6.x86_64"
},
"product_reference": "hplip-debuginfo-0:3.12.4-4.el6.x86_64",
"relates_to_product_reference": "6Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-gui-0:3.12.4-4.el6.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client:hplip-gui-0:3.12.4-4.el6.i686"
},
"product_reference": "hplip-gui-0:3.12.4-4.el6.i686",
"relates_to_product_reference": "6Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-gui-0:3.12.4-4.el6.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client:hplip-gui-0:3.12.4-4.el6.ppc64"
},
"product_reference": "hplip-gui-0:3.12.4-4.el6.ppc64",
"relates_to_product_reference": "6Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-gui-0:3.12.4-4.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client:hplip-gui-0:3.12.4-4.el6.x86_64"
},
"product_reference": "hplip-gui-0:3.12.4-4.el6.x86_64",
"relates_to_product_reference": "6Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-libs-0:3.12.4-4.el6.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client:hplip-libs-0:3.12.4-4.el6.i686"
},
"product_reference": "hplip-libs-0:3.12.4-4.el6.i686",
"relates_to_product_reference": "6Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-libs-0:3.12.4-4.el6.ppc as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client:hplip-libs-0:3.12.4-4.el6.ppc"
},
"product_reference": "hplip-libs-0:3.12.4-4.el6.ppc",
"relates_to_product_reference": "6Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-libs-0:3.12.4-4.el6.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client:hplip-libs-0:3.12.4-4.el6.ppc64"
},
"product_reference": "hplip-libs-0:3.12.4-4.el6.ppc64",
"relates_to_product_reference": "6Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-libs-0:3.12.4-4.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client:hplip-libs-0:3.12.4-4.el6.x86_64"
},
"product_reference": "hplip-libs-0:3.12.4-4.el6.x86_64",
"relates_to_product_reference": "6Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsane-hpaio-0:3.12.4-4.el6.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client:libsane-hpaio-0:3.12.4-4.el6.i686"
},
"product_reference": "libsane-hpaio-0:3.12.4-4.el6.i686",
"relates_to_product_reference": "6Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsane-hpaio-0:3.12.4-4.el6.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client:libsane-hpaio-0:3.12.4-4.el6.ppc64"
},
"product_reference": "libsane-hpaio-0:3.12.4-4.el6.ppc64",
"relates_to_product_reference": "6Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsane-hpaio-0:3.12.4-4.el6.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client:libsane-hpaio-0:3.12.4-4.el6.x86_64"
},
"product_reference": "libsane-hpaio-0:3.12.4-4.el6.x86_64",
"relates_to_product_reference": "6Client"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hpijs-1:3.12.4-4.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server:hpijs-1:3.12.4-4.el6.i686"
},
"product_reference": "hpijs-1:3.12.4-4.el6.i686",
"relates_to_product_reference": "6Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hpijs-1:3.12.4-4.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server:hpijs-1:3.12.4-4.el6.ppc64"
},
"product_reference": "hpijs-1:3.12.4-4.el6.ppc64",
"relates_to_product_reference": "6Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hpijs-1:3.12.4-4.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server:hpijs-1:3.12.4-4.el6.x86_64"
},
"product_reference": "hpijs-1:3.12.4-4.el6.x86_64",
"relates_to_product_reference": "6Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-0:3.12.4-4.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server:hplip-0:3.12.4-4.el6.i686"
},
"product_reference": "hplip-0:3.12.4-4.el6.i686",
"relates_to_product_reference": "6Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-0:3.12.4-4.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server:hplip-0:3.12.4-4.el6.ppc64"
},
"product_reference": "hplip-0:3.12.4-4.el6.ppc64",
"relates_to_product_reference": "6Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-0:3.12.4-4.el6.src as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server:hplip-0:3.12.4-4.el6.src"
},
"product_reference": "hplip-0:3.12.4-4.el6.src",
"relates_to_product_reference": "6Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-0:3.12.4-4.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server:hplip-0:3.12.4-4.el6.x86_64"
},
"product_reference": "hplip-0:3.12.4-4.el6.x86_64",
"relates_to_product_reference": "6Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-common-0:3.12.4-4.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server:hplip-common-0:3.12.4-4.el6.i686"
},
"product_reference": "hplip-common-0:3.12.4-4.el6.i686",
"relates_to_product_reference": "6Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-common-0:3.12.4-4.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server:hplip-common-0:3.12.4-4.el6.ppc64"
},
"product_reference": "hplip-common-0:3.12.4-4.el6.ppc64",
"relates_to_product_reference": "6Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-common-0:3.12.4-4.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server:hplip-common-0:3.12.4-4.el6.x86_64"
},
"product_reference": "hplip-common-0:3.12.4-4.el6.x86_64",
"relates_to_product_reference": "6Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-debuginfo-0:3.12.4-4.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server:hplip-debuginfo-0:3.12.4-4.el6.i686"
},
"product_reference": "hplip-debuginfo-0:3.12.4-4.el6.i686",
"relates_to_product_reference": "6Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-debuginfo-0:3.12.4-4.el6.ppc as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server:hplip-debuginfo-0:3.12.4-4.el6.ppc"
},
"product_reference": "hplip-debuginfo-0:3.12.4-4.el6.ppc",
"relates_to_product_reference": "6Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-debuginfo-0:3.12.4-4.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server:hplip-debuginfo-0:3.12.4-4.el6.ppc64"
},
"product_reference": "hplip-debuginfo-0:3.12.4-4.el6.ppc64",
"relates_to_product_reference": "6Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-debuginfo-0:3.12.4-4.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server:hplip-debuginfo-0:3.12.4-4.el6.x86_64"
},
"product_reference": "hplip-debuginfo-0:3.12.4-4.el6.x86_64",
"relates_to_product_reference": "6Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-gui-0:3.12.4-4.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server:hplip-gui-0:3.12.4-4.el6.i686"
},
"product_reference": "hplip-gui-0:3.12.4-4.el6.i686",
"relates_to_product_reference": "6Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-gui-0:3.12.4-4.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server:hplip-gui-0:3.12.4-4.el6.ppc64"
},
"product_reference": "hplip-gui-0:3.12.4-4.el6.ppc64",
"relates_to_product_reference": "6Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-gui-0:3.12.4-4.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server:hplip-gui-0:3.12.4-4.el6.x86_64"
},
"product_reference": "hplip-gui-0:3.12.4-4.el6.x86_64",
"relates_to_product_reference": "6Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-libs-0:3.12.4-4.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server:hplip-libs-0:3.12.4-4.el6.i686"
},
"product_reference": "hplip-libs-0:3.12.4-4.el6.i686",
"relates_to_product_reference": "6Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-libs-0:3.12.4-4.el6.ppc as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server:hplip-libs-0:3.12.4-4.el6.ppc"
},
"product_reference": "hplip-libs-0:3.12.4-4.el6.ppc",
"relates_to_product_reference": "6Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-libs-0:3.12.4-4.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server:hplip-libs-0:3.12.4-4.el6.ppc64"
},
"product_reference": "hplip-libs-0:3.12.4-4.el6.ppc64",
"relates_to_product_reference": "6Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-libs-0:3.12.4-4.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server:hplip-libs-0:3.12.4-4.el6.x86_64"
},
"product_reference": "hplip-libs-0:3.12.4-4.el6.x86_64",
"relates_to_product_reference": "6Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsane-hpaio-0:3.12.4-4.el6.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server:libsane-hpaio-0:3.12.4-4.el6.i686"
},
"product_reference": "libsane-hpaio-0:3.12.4-4.el6.i686",
"relates_to_product_reference": "6Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsane-hpaio-0:3.12.4-4.el6.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server:libsane-hpaio-0:3.12.4-4.el6.ppc64"
},
"product_reference": "libsane-hpaio-0:3.12.4-4.el6.ppc64",
"relates_to_product_reference": "6Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsane-hpaio-0:3.12.4-4.el6.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server:libsane-hpaio-0:3.12.4-4.el6.x86_64"
},
"product_reference": "libsane-hpaio-0:3.12.4-4.el6.x86_64",
"relates_to_product_reference": "6Server"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hpijs-1:3.12.4-4.el6.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation:hpijs-1:3.12.4-4.el6.i686"
},
"product_reference": "hpijs-1:3.12.4-4.el6.i686",
"relates_to_product_reference": "6Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hpijs-1:3.12.4-4.el6.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation:hpijs-1:3.12.4-4.el6.ppc64"
},
"product_reference": "hpijs-1:3.12.4-4.el6.ppc64",
"relates_to_product_reference": "6Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hpijs-1:3.12.4-4.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation:hpijs-1:3.12.4-4.el6.x86_64"
},
"product_reference": "hpijs-1:3.12.4-4.el6.x86_64",
"relates_to_product_reference": "6Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-0:3.12.4-4.el6.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation:hplip-0:3.12.4-4.el6.i686"
},
"product_reference": "hplip-0:3.12.4-4.el6.i686",
"relates_to_product_reference": "6Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-0:3.12.4-4.el6.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation:hplip-0:3.12.4-4.el6.ppc64"
},
"product_reference": "hplip-0:3.12.4-4.el6.ppc64",
"relates_to_product_reference": "6Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-0:3.12.4-4.el6.src as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation:hplip-0:3.12.4-4.el6.src"
},
"product_reference": "hplip-0:3.12.4-4.el6.src",
"relates_to_product_reference": "6Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-0:3.12.4-4.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation:hplip-0:3.12.4-4.el6.x86_64"
},
"product_reference": "hplip-0:3.12.4-4.el6.x86_64",
"relates_to_product_reference": "6Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-common-0:3.12.4-4.el6.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation:hplip-common-0:3.12.4-4.el6.i686"
},
"product_reference": "hplip-common-0:3.12.4-4.el6.i686",
"relates_to_product_reference": "6Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-common-0:3.12.4-4.el6.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation:hplip-common-0:3.12.4-4.el6.ppc64"
},
"product_reference": "hplip-common-0:3.12.4-4.el6.ppc64",
"relates_to_product_reference": "6Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-common-0:3.12.4-4.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation:hplip-common-0:3.12.4-4.el6.x86_64"
},
"product_reference": "hplip-common-0:3.12.4-4.el6.x86_64",
"relates_to_product_reference": "6Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-debuginfo-0:3.12.4-4.el6.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation:hplip-debuginfo-0:3.12.4-4.el6.i686"
},
"product_reference": "hplip-debuginfo-0:3.12.4-4.el6.i686",
"relates_to_product_reference": "6Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-debuginfo-0:3.12.4-4.el6.ppc as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation:hplip-debuginfo-0:3.12.4-4.el6.ppc"
},
"product_reference": "hplip-debuginfo-0:3.12.4-4.el6.ppc",
"relates_to_product_reference": "6Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-debuginfo-0:3.12.4-4.el6.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation:hplip-debuginfo-0:3.12.4-4.el6.ppc64"
},
"product_reference": "hplip-debuginfo-0:3.12.4-4.el6.ppc64",
"relates_to_product_reference": "6Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-debuginfo-0:3.12.4-4.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation:hplip-debuginfo-0:3.12.4-4.el6.x86_64"
},
"product_reference": "hplip-debuginfo-0:3.12.4-4.el6.x86_64",
"relates_to_product_reference": "6Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-gui-0:3.12.4-4.el6.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation:hplip-gui-0:3.12.4-4.el6.i686"
},
"product_reference": "hplip-gui-0:3.12.4-4.el6.i686",
"relates_to_product_reference": "6Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-gui-0:3.12.4-4.el6.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation:hplip-gui-0:3.12.4-4.el6.ppc64"
},
"product_reference": "hplip-gui-0:3.12.4-4.el6.ppc64",
"relates_to_product_reference": "6Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-gui-0:3.12.4-4.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation:hplip-gui-0:3.12.4-4.el6.x86_64"
},
"product_reference": "hplip-gui-0:3.12.4-4.el6.x86_64",
"relates_to_product_reference": "6Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-libs-0:3.12.4-4.el6.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation:hplip-libs-0:3.12.4-4.el6.i686"
},
"product_reference": "hplip-libs-0:3.12.4-4.el6.i686",
"relates_to_product_reference": "6Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-libs-0:3.12.4-4.el6.ppc as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation:hplip-libs-0:3.12.4-4.el6.ppc"
},
"product_reference": "hplip-libs-0:3.12.4-4.el6.ppc",
"relates_to_product_reference": "6Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-libs-0:3.12.4-4.el6.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation:hplip-libs-0:3.12.4-4.el6.ppc64"
},
"product_reference": "hplip-libs-0:3.12.4-4.el6.ppc64",
"relates_to_product_reference": "6Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "hplip-libs-0:3.12.4-4.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation:hplip-libs-0:3.12.4-4.el6.x86_64"
},
"product_reference": "hplip-libs-0:3.12.4-4.el6.x86_64",
"relates_to_product_reference": "6Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsane-hpaio-0:3.12.4-4.el6.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation:libsane-hpaio-0:3.12.4-4.el6.i686"
},
"product_reference": "libsane-hpaio-0:3.12.4-4.el6.i686",
"relates_to_product_reference": "6Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsane-hpaio-0:3.12.4-4.el6.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation:libsane-hpaio-0:3.12.4-4.el6.ppc64"
},
"product_reference": "libsane-hpaio-0:3.12.4-4.el6.ppc64",
"relates_to_product_reference": "6Workstation"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsane-hpaio-0:3.12.4-4.el6.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation:libsane-hpaio-0:3.12.4-4.el6.x86_64"
},
"product_reference": "libsane-hpaio-0:3.12.4-4.el6.x86_64",
"relates_to_product_reference": "6Workstation"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2011-2722",
"cwe": {
"id": "CWE-377",
"name": "Insecure Temporary File"
},
"discovery_date": "2011-07-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "725830"
}
],
"notes": [
{
"category": "description",
"text": "The send_data_to_stdout function in prnt/hpijs/hpcupsfax.cpp in HP Linux Imaging and Printing (HPLIP) 3.x before 3.11.10 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/hpcupsfax.out temporary file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "hplip: insecure temporary file handling",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client:hpijs-1:3.12.4-4.el6.i686",
"6Client:hpijs-1:3.12.4-4.el6.ppc64",
"6Client:hpijs-1:3.12.4-4.el6.x86_64",
"6Client:hplip-0:3.12.4-4.el6.i686",
"6Client:hplip-0:3.12.4-4.el6.ppc64",
"6Client:hplip-0:3.12.4-4.el6.src",
"6Client:hplip-0:3.12.4-4.el6.x86_64",
"6Client:hplip-common-0:3.12.4-4.el6.i686",
"6Client:hplip-common-0:3.12.4-4.el6.ppc64",
"6Client:hplip-common-0:3.12.4-4.el6.x86_64",
"6Client:hplip-debuginfo-0:3.12.4-4.el6.i686",
"6Client:hplip-debuginfo-0:3.12.4-4.el6.ppc",
"6Client:hplip-debuginfo-0:3.12.4-4.el6.ppc64",
"6Client:hplip-debuginfo-0:3.12.4-4.el6.x86_64",
"6Client:hplip-gui-0:3.12.4-4.el6.i686",
"6Client:hplip-gui-0:3.12.4-4.el6.ppc64",
"6Client:hplip-gui-0:3.12.4-4.el6.x86_64",
"6Client:hplip-libs-0:3.12.4-4.el6.i686",
"6Client:hplip-libs-0:3.12.4-4.el6.ppc",
"6Client:hplip-libs-0:3.12.4-4.el6.ppc64",
"6Client:hplip-libs-0:3.12.4-4.el6.x86_64",
"6Client:libsane-hpaio-0:3.12.4-4.el6.i686",
"6Client:libsane-hpaio-0:3.12.4-4.el6.ppc64",
"6Client:libsane-hpaio-0:3.12.4-4.el6.x86_64",
"6Server:hpijs-1:3.12.4-4.el6.i686",
"6Server:hpijs-1:3.12.4-4.el6.ppc64",
"6Server:hpijs-1:3.12.4-4.el6.x86_64",
"6Server:hplip-0:3.12.4-4.el6.i686",
"6Server:hplip-0:3.12.4-4.el6.ppc64",
"6Server:hplip-0:3.12.4-4.el6.src",
"6Server:hplip-0:3.12.4-4.el6.x86_64",
"6Server:hplip-common-0:3.12.4-4.el6.i686",
"6Server:hplip-common-0:3.12.4-4.el6.ppc64",
"6Server:hplip-common-0:3.12.4-4.el6.x86_64",
"6Server:hplip-debuginfo-0:3.12.4-4.el6.i686",
"6Server:hplip-debuginfo-0:3.12.4-4.el6.ppc",
"6Server:hplip-debuginfo-0:3.12.4-4.el6.ppc64",
"6Server:hplip-debuginfo-0:3.12.4-4.el6.x86_64",
"6Server:hplip-gui-0:3.12.4-4.el6.i686",
"6Server:hplip-gui-0:3.12.4-4.el6.ppc64",
"6Server:hplip-gui-0:3.12.4-4.el6.x86_64",
"6Server:hplip-libs-0:3.12.4-4.el6.i686",
"6Server:hplip-libs-0:3.12.4-4.el6.ppc",
"6Server:hplip-libs-0:3.12.4-4.el6.ppc64",
"6Server:hplip-libs-0:3.12.4-4.el6.x86_64",
"6Server:libsane-hpaio-0:3.12.4-4.el6.i686",
"6Server:libsane-hpaio-0:3.12.4-4.el6.ppc64",
"6Server:libsane-hpaio-0:3.12.4-4.el6.x86_64",
"6Workstation:hpijs-1:3.12.4-4.el6.i686",
"6Workstation:hpijs-1:3.12.4-4.el6.ppc64",
"6Workstation:hpijs-1:3.12.4-4.el6.x86_64",
"6Workstation:hplip-0:3.12.4-4.el6.i686",
"6Workstation:hplip-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-0:3.12.4-4.el6.src",
"6Workstation:hplip-0:3.12.4-4.el6.x86_64",
"6Workstation:hplip-common-0:3.12.4-4.el6.i686",
"6Workstation:hplip-common-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-common-0:3.12.4-4.el6.x86_64",
"6Workstation:hplip-debuginfo-0:3.12.4-4.el6.i686",
"6Workstation:hplip-debuginfo-0:3.12.4-4.el6.ppc",
"6Workstation:hplip-debuginfo-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-debuginfo-0:3.12.4-4.el6.x86_64",
"6Workstation:hplip-gui-0:3.12.4-4.el6.i686",
"6Workstation:hplip-gui-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-gui-0:3.12.4-4.el6.x86_64",
"6Workstation:hplip-libs-0:3.12.4-4.el6.i686",
"6Workstation:hplip-libs-0:3.12.4-4.el6.ppc",
"6Workstation:hplip-libs-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-libs-0:3.12.4-4.el6.x86_64",
"6Workstation:libsane-hpaio-0:3.12.4-4.el6.i686",
"6Workstation:libsane-hpaio-0:3.12.4-4.el6.ppc64",
"6Workstation:libsane-hpaio-0:3.12.4-4.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-2722"
},
{
"category": "external",
"summary": "RHBZ#725830",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=725830"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-2722",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2722"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2722",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2722"
}
],
"release_date": "2011-07-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-20T16:17:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"6Client:hpijs-1:3.12.4-4.el6.i686",
"6Client:hpijs-1:3.12.4-4.el6.ppc64",
"6Client:hpijs-1:3.12.4-4.el6.x86_64",
"6Client:hplip-0:3.12.4-4.el6.i686",
"6Client:hplip-0:3.12.4-4.el6.ppc64",
"6Client:hplip-0:3.12.4-4.el6.src",
"6Client:hplip-0:3.12.4-4.el6.x86_64",
"6Client:hplip-common-0:3.12.4-4.el6.i686",
"6Client:hplip-common-0:3.12.4-4.el6.ppc64",
"6Client:hplip-common-0:3.12.4-4.el6.x86_64",
"6Client:hplip-debuginfo-0:3.12.4-4.el6.i686",
"6Client:hplip-debuginfo-0:3.12.4-4.el6.ppc",
"6Client:hplip-debuginfo-0:3.12.4-4.el6.ppc64",
"6Client:hplip-debuginfo-0:3.12.4-4.el6.x86_64",
"6Client:hplip-gui-0:3.12.4-4.el6.i686",
"6Client:hplip-gui-0:3.12.4-4.el6.ppc64",
"6Client:hplip-gui-0:3.12.4-4.el6.x86_64",
"6Client:hplip-libs-0:3.12.4-4.el6.i686",
"6Client:hplip-libs-0:3.12.4-4.el6.ppc",
"6Client:hplip-libs-0:3.12.4-4.el6.ppc64",
"6Client:hplip-libs-0:3.12.4-4.el6.x86_64",
"6Client:libsane-hpaio-0:3.12.4-4.el6.i686",
"6Client:libsane-hpaio-0:3.12.4-4.el6.ppc64",
"6Client:libsane-hpaio-0:3.12.4-4.el6.x86_64",
"6Server:hpijs-1:3.12.4-4.el6.i686",
"6Server:hpijs-1:3.12.4-4.el6.ppc64",
"6Server:hpijs-1:3.12.4-4.el6.x86_64",
"6Server:hplip-0:3.12.4-4.el6.i686",
"6Server:hplip-0:3.12.4-4.el6.ppc64",
"6Server:hplip-0:3.12.4-4.el6.src",
"6Server:hplip-0:3.12.4-4.el6.x86_64",
"6Server:hplip-common-0:3.12.4-4.el6.i686",
"6Server:hplip-common-0:3.12.4-4.el6.ppc64",
"6Server:hplip-common-0:3.12.4-4.el6.x86_64",
"6Server:hplip-debuginfo-0:3.12.4-4.el6.i686",
"6Server:hplip-debuginfo-0:3.12.4-4.el6.ppc",
"6Server:hplip-debuginfo-0:3.12.4-4.el6.ppc64",
"6Server:hplip-debuginfo-0:3.12.4-4.el6.x86_64",
"6Server:hplip-gui-0:3.12.4-4.el6.i686",
"6Server:hplip-gui-0:3.12.4-4.el6.ppc64",
"6Server:hplip-gui-0:3.12.4-4.el6.x86_64",
"6Server:hplip-libs-0:3.12.4-4.el6.i686",
"6Server:hplip-libs-0:3.12.4-4.el6.ppc",
"6Server:hplip-libs-0:3.12.4-4.el6.ppc64",
"6Server:hplip-libs-0:3.12.4-4.el6.x86_64",
"6Server:libsane-hpaio-0:3.12.4-4.el6.i686",
"6Server:libsane-hpaio-0:3.12.4-4.el6.ppc64",
"6Server:libsane-hpaio-0:3.12.4-4.el6.x86_64",
"6Workstation:hpijs-1:3.12.4-4.el6.i686",
"6Workstation:hpijs-1:3.12.4-4.el6.ppc64",
"6Workstation:hpijs-1:3.12.4-4.el6.x86_64",
"6Workstation:hplip-0:3.12.4-4.el6.i686",
"6Workstation:hplip-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-0:3.12.4-4.el6.src",
"6Workstation:hplip-0:3.12.4-4.el6.x86_64",
"6Workstation:hplip-common-0:3.12.4-4.el6.i686",
"6Workstation:hplip-common-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-common-0:3.12.4-4.el6.x86_64",
"6Workstation:hplip-debuginfo-0:3.12.4-4.el6.i686",
"6Workstation:hplip-debuginfo-0:3.12.4-4.el6.ppc",
"6Workstation:hplip-debuginfo-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-debuginfo-0:3.12.4-4.el6.x86_64",
"6Workstation:hplip-gui-0:3.12.4-4.el6.i686",
"6Workstation:hplip-gui-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-gui-0:3.12.4-4.el6.x86_64",
"6Workstation:hplip-libs-0:3.12.4-4.el6.i686",
"6Workstation:hplip-libs-0:3.12.4-4.el6.ppc",
"6Workstation:hplip-libs-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-libs-0:3.12.4-4.el6.x86_64",
"6Workstation:libsane-hpaio-0:3.12.4-4.el6.i686",
"6Workstation:libsane-hpaio-0:3.12.4-4.el6.ppc64",
"6Workstation:libsane-hpaio-0:3.12.4-4.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0500"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 1.9,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"6Client:hpijs-1:3.12.4-4.el6.i686",
"6Client:hpijs-1:3.12.4-4.el6.ppc64",
"6Client:hpijs-1:3.12.4-4.el6.x86_64",
"6Client:hplip-0:3.12.4-4.el6.i686",
"6Client:hplip-0:3.12.4-4.el6.ppc64",
"6Client:hplip-0:3.12.4-4.el6.src",
"6Client:hplip-0:3.12.4-4.el6.x86_64",
"6Client:hplip-common-0:3.12.4-4.el6.i686",
"6Client:hplip-common-0:3.12.4-4.el6.ppc64",
"6Client:hplip-common-0:3.12.4-4.el6.x86_64",
"6Client:hplip-debuginfo-0:3.12.4-4.el6.i686",
"6Client:hplip-debuginfo-0:3.12.4-4.el6.ppc",
"6Client:hplip-debuginfo-0:3.12.4-4.el6.ppc64",
"6Client:hplip-debuginfo-0:3.12.4-4.el6.x86_64",
"6Client:hplip-gui-0:3.12.4-4.el6.i686",
"6Client:hplip-gui-0:3.12.4-4.el6.ppc64",
"6Client:hplip-gui-0:3.12.4-4.el6.x86_64",
"6Client:hplip-libs-0:3.12.4-4.el6.i686",
"6Client:hplip-libs-0:3.12.4-4.el6.ppc",
"6Client:hplip-libs-0:3.12.4-4.el6.ppc64",
"6Client:hplip-libs-0:3.12.4-4.el6.x86_64",
"6Client:libsane-hpaio-0:3.12.4-4.el6.i686",
"6Client:libsane-hpaio-0:3.12.4-4.el6.ppc64",
"6Client:libsane-hpaio-0:3.12.4-4.el6.x86_64",
"6Server:hpijs-1:3.12.4-4.el6.i686",
"6Server:hpijs-1:3.12.4-4.el6.ppc64",
"6Server:hpijs-1:3.12.4-4.el6.x86_64",
"6Server:hplip-0:3.12.4-4.el6.i686",
"6Server:hplip-0:3.12.4-4.el6.ppc64",
"6Server:hplip-0:3.12.4-4.el6.src",
"6Server:hplip-0:3.12.4-4.el6.x86_64",
"6Server:hplip-common-0:3.12.4-4.el6.i686",
"6Server:hplip-common-0:3.12.4-4.el6.ppc64",
"6Server:hplip-common-0:3.12.4-4.el6.x86_64",
"6Server:hplip-debuginfo-0:3.12.4-4.el6.i686",
"6Server:hplip-debuginfo-0:3.12.4-4.el6.ppc",
"6Server:hplip-debuginfo-0:3.12.4-4.el6.ppc64",
"6Server:hplip-debuginfo-0:3.12.4-4.el6.x86_64",
"6Server:hplip-gui-0:3.12.4-4.el6.i686",
"6Server:hplip-gui-0:3.12.4-4.el6.ppc64",
"6Server:hplip-gui-0:3.12.4-4.el6.x86_64",
"6Server:hplip-libs-0:3.12.4-4.el6.i686",
"6Server:hplip-libs-0:3.12.4-4.el6.ppc",
"6Server:hplip-libs-0:3.12.4-4.el6.ppc64",
"6Server:hplip-libs-0:3.12.4-4.el6.x86_64",
"6Server:libsane-hpaio-0:3.12.4-4.el6.i686",
"6Server:libsane-hpaio-0:3.12.4-4.el6.ppc64",
"6Server:libsane-hpaio-0:3.12.4-4.el6.x86_64",
"6Workstation:hpijs-1:3.12.4-4.el6.i686",
"6Workstation:hpijs-1:3.12.4-4.el6.ppc64",
"6Workstation:hpijs-1:3.12.4-4.el6.x86_64",
"6Workstation:hplip-0:3.12.4-4.el6.i686",
"6Workstation:hplip-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-0:3.12.4-4.el6.src",
"6Workstation:hplip-0:3.12.4-4.el6.x86_64",
"6Workstation:hplip-common-0:3.12.4-4.el6.i686",
"6Workstation:hplip-common-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-common-0:3.12.4-4.el6.x86_64",
"6Workstation:hplip-debuginfo-0:3.12.4-4.el6.i686",
"6Workstation:hplip-debuginfo-0:3.12.4-4.el6.ppc",
"6Workstation:hplip-debuginfo-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-debuginfo-0:3.12.4-4.el6.x86_64",
"6Workstation:hplip-gui-0:3.12.4-4.el6.i686",
"6Workstation:hplip-gui-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-gui-0:3.12.4-4.el6.x86_64",
"6Workstation:hplip-libs-0:3.12.4-4.el6.i686",
"6Workstation:hplip-libs-0:3.12.4-4.el6.ppc",
"6Workstation:hplip-libs-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-libs-0:3.12.4-4.el6.x86_64",
"6Workstation:libsane-hpaio-0:3.12.4-4.el6.i686",
"6Workstation:libsane-hpaio-0:3.12.4-4.el6.ppc64",
"6Workstation:libsane-hpaio-0:3.12.4-4.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "hplip: insecure temporary file handling"
},
{
"acknowledgments": [
{
"names": [
"Tim Waugh"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2013-0200",
"cwe": {
"id": "CWE-377",
"name": "Insecure Temporary File"
},
"discovery_date": "2012-01-21T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "902163"
}
],
"notes": [
{
"category": "description",
"text": "HP Linux Imaging and Printing (HPLIP) through 3.12.4 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/hpcupsfilterc_#.bmp, (2) /tmp/hpcupsfilterk_#.bmp, (3) /tmp/hpcups_job#.out, (4) /tmp/hpijs_#####.out, or (5) /tmp/hpps_job#.out temporary file, a different vulnerability than CVE-2011-2722.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "hplip: insecure temporary file handling flaws",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue does not affect the version of hplip and hplip3 as shipped with Red Hat Enterprise Linux 5. This issue has been addressed in Red Hat Enterprise Linux 6 via RHSA-2013:0500.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client:hpijs-1:3.12.4-4.el6.i686",
"6Client:hpijs-1:3.12.4-4.el6.ppc64",
"6Client:hpijs-1:3.12.4-4.el6.x86_64",
"6Client:hplip-0:3.12.4-4.el6.i686",
"6Client:hplip-0:3.12.4-4.el6.ppc64",
"6Client:hplip-0:3.12.4-4.el6.src",
"6Client:hplip-0:3.12.4-4.el6.x86_64",
"6Client:hplip-common-0:3.12.4-4.el6.i686",
"6Client:hplip-common-0:3.12.4-4.el6.ppc64",
"6Client:hplip-common-0:3.12.4-4.el6.x86_64",
"6Client:hplip-debuginfo-0:3.12.4-4.el6.i686",
"6Client:hplip-debuginfo-0:3.12.4-4.el6.ppc",
"6Client:hplip-debuginfo-0:3.12.4-4.el6.ppc64",
"6Client:hplip-debuginfo-0:3.12.4-4.el6.x86_64",
"6Client:hplip-gui-0:3.12.4-4.el6.i686",
"6Client:hplip-gui-0:3.12.4-4.el6.ppc64",
"6Client:hplip-gui-0:3.12.4-4.el6.x86_64",
"6Client:hplip-libs-0:3.12.4-4.el6.i686",
"6Client:hplip-libs-0:3.12.4-4.el6.ppc",
"6Client:hplip-libs-0:3.12.4-4.el6.ppc64",
"6Client:hplip-libs-0:3.12.4-4.el6.x86_64",
"6Client:libsane-hpaio-0:3.12.4-4.el6.i686",
"6Client:libsane-hpaio-0:3.12.4-4.el6.ppc64",
"6Client:libsane-hpaio-0:3.12.4-4.el6.x86_64",
"6Server:hpijs-1:3.12.4-4.el6.i686",
"6Server:hpijs-1:3.12.4-4.el6.ppc64",
"6Server:hpijs-1:3.12.4-4.el6.x86_64",
"6Server:hplip-0:3.12.4-4.el6.i686",
"6Server:hplip-0:3.12.4-4.el6.ppc64",
"6Server:hplip-0:3.12.4-4.el6.src",
"6Server:hplip-0:3.12.4-4.el6.x86_64",
"6Server:hplip-common-0:3.12.4-4.el6.i686",
"6Server:hplip-common-0:3.12.4-4.el6.ppc64",
"6Server:hplip-common-0:3.12.4-4.el6.x86_64",
"6Server:hplip-debuginfo-0:3.12.4-4.el6.i686",
"6Server:hplip-debuginfo-0:3.12.4-4.el6.ppc",
"6Server:hplip-debuginfo-0:3.12.4-4.el6.ppc64",
"6Server:hplip-debuginfo-0:3.12.4-4.el6.x86_64",
"6Server:hplip-gui-0:3.12.4-4.el6.i686",
"6Server:hplip-gui-0:3.12.4-4.el6.ppc64",
"6Server:hplip-gui-0:3.12.4-4.el6.x86_64",
"6Server:hplip-libs-0:3.12.4-4.el6.i686",
"6Server:hplip-libs-0:3.12.4-4.el6.ppc",
"6Server:hplip-libs-0:3.12.4-4.el6.ppc64",
"6Server:hplip-libs-0:3.12.4-4.el6.x86_64",
"6Server:libsane-hpaio-0:3.12.4-4.el6.i686",
"6Server:libsane-hpaio-0:3.12.4-4.el6.ppc64",
"6Server:libsane-hpaio-0:3.12.4-4.el6.x86_64",
"6Workstation:hpijs-1:3.12.4-4.el6.i686",
"6Workstation:hpijs-1:3.12.4-4.el6.ppc64",
"6Workstation:hpijs-1:3.12.4-4.el6.x86_64",
"6Workstation:hplip-0:3.12.4-4.el6.i686",
"6Workstation:hplip-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-0:3.12.4-4.el6.src",
"6Workstation:hplip-0:3.12.4-4.el6.x86_64",
"6Workstation:hplip-common-0:3.12.4-4.el6.i686",
"6Workstation:hplip-common-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-common-0:3.12.4-4.el6.x86_64",
"6Workstation:hplip-debuginfo-0:3.12.4-4.el6.i686",
"6Workstation:hplip-debuginfo-0:3.12.4-4.el6.ppc",
"6Workstation:hplip-debuginfo-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-debuginfo-0:3.12.4-4.el6.x86_64",
"6Workstation:hplip-gui-0:3.12.4-4.el6.i686",
"6Workstation:hplip-gui-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-gui-0:3.12.4-4.el6.x86_64",
"6Workstation:hplip-libs-0:3.12.4-4.el6.i686",
"6Workstation:hplip-libs-0:3.12.4-4.el6.ppc",
"6Workstation:hplip-libs-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-libs-0:3.12.4-4.el6.x86_64",
"6Workstation:libsane-hpaio-0:3.12.4-4.el6.i686",
"6Workstation:libsane-hpaio-0:3.12.4-4.el6.ppc64",
"6Workstation:libsane-hpaio-0:3.12.4-4.el6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-0200"
},
{
"category": "external",
"summary": "RHBZ#902163",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=902163"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-0200",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0200"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-0200",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0200"
}
],
"release_date": "2013-02-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2013-02-20T16:17:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"6Client:hpijs-1:3.12.4-4.el6.i686",
"6Client:hpijs-1:3.12.4-4.el6.ppc64",
"6Client:hpijs-1:3.12.4-4.el6.x86_64",
"6Client:hplip-0:3.12.4-4.el6.i686",
"6Client:hplip-0:3.12.4-4.el6.ppc64",
"6Client:hplip-0:3.12.4-4.el6.src",
"6Client:hplip-0:3.12.4-4.el6.x86_64",
"6Client:hplip-common-0:3.12.4-4.el6.i686",
"6Client:hplip-common-0:3.12.4-4.el6.ppc64",
"6Client:hplip-common-0:3.12.4-4.el6.x86_64",
"6Client:hplip-debuginfo-0:3.12.4-4.el6.i686",
"6Client:hplip-debuginfo-0:3.12.4-4.el6.ppc",
"6Client:hplip-debuginfo-0:3.12.4-4.el6.ppc64",
"6Client:hplip-debuginfo-0:3.12.4-4.el6.x86_64",
"6Client:hplip-gui-0:3.12.4-4.el6.i686",
"6Client:hplip-gui-0:3.12.4-4.el6.ppc64",
"6Client:hplip-gui-0:3.12.4-4.el6.x86_64",
"6Client:hplip-libs-0:3.12.4-4.el6.i686",
"6Client:hplip-libs-0:3.12.4-4.el6.ppc",
"6Client:hplip-libs-0:3.12.4-4.el6.ppc64",
"6Client:hplip-libs-0:3.12.4-4.el6.x86_64",
"6Client:libsane-hpaio-0:3.12.4-4.el6.i686",
"6Client:libsane-hpaio-0:3.12.4-4.el6.ppc64",
"6Client:libsane-hpaio-0:3.12.4-4.el6.x86_64",
"6Server:hpijs-1:3.12.4-4.el6.i686",
"6Server:hpijs-1:3.12.4-4.el6.ppc64",
"6Server:hpijs-1:3.12.4-4.el6.x86_64",
"6Server:hplip-0:3.12.4-4.el6.i686",
"6Server:hplip-0:3.12.4-4.el6.ppc64",
"6Server:hplip-0:3.12.4-4.el6.src",
"6Server:hplip-0:3.12.4-4.el6.x86_64",
"6Server:hplip-common-0:3.12.4-4.el6.i686",
"6Server:hplip-common-0:3.12.4-4.el6.ppc64",
"6Server:hplip-common-0:3.12.4-4.el6.x86_64",
"6Server:hplip-debuginfo-0:3.12.4-4.el6.i686",
"6Server:hplip-debuginfo-0:3.12.4-4.el6.ppc",
"6Server:hplip-debuginfo-0:3.12.4-4.el6.ppc64",
"6Server:hplip-debuginfo-0:3.12.4-4.el6.x86_64",
"6Server:hplip-gui-0:3.12.4-4.el6.i686",
"6Server:hplip-gui-0:3.12.4-4.el6.ppc64",
"6Server:hplip-gui-0:3.12.4-4.el6.x86_64",
"6Server:hplip-libs-0:3.12.4-4.el6.i686",
"6Server:hplip-libs-0:3.12.4-4.el6.ppc",
"6Server:hplip-libs-0:3.12.4-4.el6.ppc64",
"6Server:hplip-libs-0:3.12.4-4.el6.x86_64",
"6Server:libsane-hpaio-0:3.12.4-4.el6.i686",
"6Server:libsane-hpaio-0:3.12.4-4.el6.ppc64",
"6Server:libsane-hpaio-0:3.12.4-4.el6.x86_64",
"6Workstation:hpijs-1:3.12.4-4.el6.i686",
"6Workstation:hpijs-1:3.12.4-4.el6.ppc64",
"6Workstation:hpijs-1:3.12.4-4.el6.x86_64",
"6Workstation:hplip-0:3.12.4-4.el6.i686",
"6Workstation:hplip-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-0:3.12.4-4.el6.src",
"6Workstation:hplip-0:3.12.4-4.el6.x86_64",
"6Workstation:hplip-common-0:3.12.4-4.el6.i686",
"6Workstation:hplip-common-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-common-0:3.12.4-4.el6.x86_64",
"6Workstation:hplip-debuginfo-0:3.12.4-4.el6.i686",
"6Workstation:hplip-debuginfo-0:3.12.4-4.el6.ppc",
"6Workstation:hplip-debuginfo-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-debuginfo-0:3.12.4-4.el6.x86_64",
"6Workstation:hplip-gui-0:3.12.4-4.el6.i686",
"6Workstation:hplip-gui-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-gui-0:3.12.4-4.el6.x86_64",
"6Workstation:hplip-libs-0:3.12.4-4.el6.i686",
"6Workstation:hplip-libs-0:3.12.4-4.el6.ppc",
"6Workstation:hplip-libs-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-libs-0:3.12.4-4.el6.x86_64",
"6Workstation:libsane-hpaio-0:3.12.4-4.el6.i686",
"6Workstation:libsane-hpaio-0:3.12.4-4.el6.ppc64",
"6Workstation:libsane-hpaio-0:3.12.4-4.el6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0500"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 1.9,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"6Client:hpijs-1:3.12.4-4.el6.i686",
"6Client:hpijs-1:3.12.4-4.el6.ppc64",
"6Client:hpijs-1:3.12.4-4.el6.x86_64",
"6Client:hplip-0:3.12.4-4.el6.i686",
"6Client:hplip-0:3.12.4-4.el6.ppc64",
"6Client:hplip-0:3.12.4-4.el6.src",
"6Client:hplip-0:3.12.4-4.el6.x86_64",
"6Client:hplip-common-0:3.12.4-4.el6.i686",
"6Client:hplip-common-0:3.12.4-4.el6.ppc64",
"6Client:hplip-common-0:3.12.4-4.el6.x86_64",
"6Client:hplip-debuginfo-0:3.12.4-4.el6.i686",
"6Client:hplip-debuginfo-0:3.12.4-4.el6.ppc",
"6Client:hplip-debuginfo-0:3.12.4-4.el6.ppc64",
"6Client:hplip-debuginfo-0:3.12.4-4.el6.x86_64",
"6Client:hplip-gui-0:3.12.4-4.el6.i686",
"6Client:hplip-gui-0:3.12.4-4.el6.ppc64",
"6Client:hplip-gui-0:3.12.4-4.el6.x86_64",
"6Client:hplip-libs-0:3.12.4-4.el6.i686",
"6Client:hplip-libs-0:3.12.4-4.el6.ppc",
"6Client:hplip-libs-0:3.12.4-4.el6.ppc64",
"6Client:hplip-libs-0:3.12.4-4.el6.x86_64",
"6Client:libsane-hpaio-0:3.12.4-4.el6.i686",
"6Client:libsane-hpaio-0:3.12.4-4.el6.ppc64",
"6Client:libsane-hpaio-0:3.12.4-4.el6.x86_64",
"6Server:hpijs-1:3.12.4-4.el6.i686",
"6Server:hpijs-1:3.12.4-4.el6.ppc64",
"6Server:hpijs-1:3.12.4-4.el6.x86_64",
"6Server:hplip-0:3.12.4-4.el6.i686",
"6Server:hplip-0:3.12.4-4.el6.ppc64",
"6Server:hplip-0:3.12.4-4.el6.src",
"6Server:hplip-0:3.12.4-4.el6.x86_64",
"6Server:hplip-common-0:3.12.4-4.el6.i686",
"6Server:hplip-common-0:3.12.4-4.el6.ppc64",
"6Server:hplip-common-0:3.12.4-4.el6.x86_64",
"6Server:hplip-debuginfo-0:3.12.4-4.el6.i686",
"6Server:hplip-debuginfo-0:3.12.4-4.el6.ppc",
"6Server:hplip-debuginfo-0:3.12.4-4.el6.ppc64",
"6Server:hplip-debuginfo-0:3.12.4-4.el6.x86_64",
"6Server:hplip-gui-0:3.12.4-4.el6.i686",
"6Server:hplip-gui-0:3.12.4-4.el6.ppc64",
"6Server:hplip-gui-0:3.12.4-4.el6.x86_64",
"6Server:hplip-libs-0:3.12.4-4.el6.i686",
"6Server:hplip-libs-0:3.12.4-4.el6.ppc",
"6Server:hplip-libs-0:3.12.4-4.el6.ppc64",
"6Server:hplip-libs-0:3.12.4-4.el6.x86_64",
"6Server:libsane-hpaio-0:3.12.4-4.el6.i686",
"6Server:libsane-hpaio-0:3.12.4-4.el6.ppc64",
"6Server:libsane-hpaio-0:3.12.4-4.el6.x86_64",
"6Workstation:hpijs-1:3.12.4-4.el6.i686",
"6Workstation:hpijs-1:3.12.4-4.el6.ppc64",
"6Workstation:hpijs-1:3.12.4-4.el6.x86_64",
"6Workstation:hplip-0:3.12.4-4.el6.i686",
"6Workstation:hplip-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-0:3.12.4-4.el6.src",
"6Workstation:hplip-0:3.12.4-4.el6.x86_64",
"6Workstation:hplip-common-0:3.12.4-4.el6.i686",
"6Workstation:hplip-common-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-common-0:3.12.4-4.el6.x86_64",
"6Workstation:hplip-debuginfo-0:3.12.4-4.el6.i686",
"6Workstation:hplip-debuginfo-0:3.12.4-4.el6.ppc",
"6Workstation:hplip-debuginfo-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-debuginfo-0:3.12.4-4.el6.x86_64",
"6Workstation:hplip-gui-0:3.12.4-4.el6.i686",
"6Workstation:hplip-gui-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-gui-0:3.12.4-4.el6.x86_64",
"6Workstation:hplip-libs-0:3.12.4-4.el6.i686",
"6Workstation:hplip-libs-0:3.12.4-4.el6.ppc",
"6Workstation:hplip-libs-0:3.12.4-4.el6.ppc64",
"6Workstation:hplip-libs-0:3.12.4-4.el6.x86_64",
"6Workstation:libsane-hpaio-0:3.12.4-4.el6.i686",
"6Workstation:libsane-hpaio-0:3.12.4-4.el6.ppc64",
"6Workstation:libsane-hpaio-0:3.12.4-4.el6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "hplip: insecure temporary file handling flaws"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.