Linux Foundation Foomatic-Filters 4.0.11

CPE Details

Linux Foundation Foomatic-Filters 4.0.11
linuxfoundation
foomatic-filters
4.0.11
2015-12-18
15h48 +00:00
2015-12-18
15h48 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:linuxfoundation:foomatic-filters:4.0.11:*:*:*:*:*:*:*

Informations

Vendor

linuxfoundation

Product

foomatic-filters

Version

4.0.11

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2011-2924 2019-11-19 20h20 +00:00 foomatic-rip filter v4.0.12 and prior used insecurely creates temporary files for storage of PostScript data by rendering the data when the debug mode was enabled. This flaw may be exploited by a local attacker to conduct symlink attacks by overwriting arbitrary files accessible with the privileges of the user running the foomatic-rip universal print filter.
5.5
Medium
CVE-2011-2923 2019-11-19 19h38 +00:00 foomatic-rip filter, all versions, used insecurely creates temporary files for storage of PostScript data by rendering the data when the debug mode was enabled. This flaw may be exploited by a local attacker to conduct symlink attacks by overwriting arbitrary files accessible with the privileges of the user running the foomatic-rip universal print filter.
5.5
Medium
CVE-2015-8560 2016-04-14 12h00 +00:00 Incomplete blacklist vulnerability in util.c in foomatic-rip in cups-filters 1.0.42 before 1.4.0 and in foomatic-filters in Foomatic 4.0.x allows remote attackers to execute arbitrary commands via a ; (semicolon) character in a print job, a different vulnerability than CVE-2015-8327.
7.3
High
CVE-2015-8327 2015-12-17 18h00 +00:00 Incomplete blacklist vulnerability in util.c in foomatic-rip in cups-filters 1.0.42 before 1.2.0 and in foomatic-filters in Foomatic 4.0.x allows remote attackers to execute arbitrary commands via ` (backtick) characters in a print job.
7.5