| |||||||||||||||||||
Pardus alert 2011-33 (hplip)
------------------------------------------------------------------------ Pardus Linux Security Advisory 2011-33 security@pardus.org.tr ------------------------------------------------------------------------ Date: 2011-02-12 Severity: 3 Type: Remote ------------------------------------------------------------------------ Summary ======= A vulnerability was found in hplib, which can be exploited by malicious people to cause denial of service Description =========== CVE-2010-4267: Stack-based buffer overflow in the hpmud_get_pml function in io/hpmud/pml.c in Hewlett-Packard Linux Imaging and Printing (HPLIP) 1.6.7, 3.9.8, 3.10.9, and probably other versions allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted SNMP response with a large length value. Affected packages: Pardus 2009: hplip, all before 3.10.9-46-10 Resolution ========== There are update(s) for hplip. You can update them via Package Manager or with a single command from console: pisi up hplip References ========== * http://bugs.pardus.org.tr/show_bug.cgi?id=16507 * http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-... ------------------------------------------------------------------------ _______________________________________________ Pardus-Security mailing list Pardus-Security@pardus.org.tr http://liste.pardus.org.tr/mailman/listinfo/pardus-security (Log in to post comments)
|
|||||||||||||||||||