User: Password:
Subscribe / Log in / New account

Scientific Linux alert SL-syst-20110823 (system-config-printer)

From:  Troy Dawson <>
To:  "" <>
Subject:  Security ERRATA Moderate: system-config-printer on SL4.x, SL5.x i386/x86_64
Date:  Tue, 23 Aug 2011 12:22:17 -0500
Message-ID:  <>
Archive-link:  Article, Thread

Synopsis: Moderate: system-config-printer security update Issue Date: 2011-08-23 CVE Numbers: CVE-2011-2899 system-config-printer is a print queue configuration tool with a graphical user interface. It was found that system-config-printer did not properly sanitize NetBIOS and workgroup names when searching for network printers. A remote attacker could use this flaw to execute arbitrary code with the privileges of the user running system-config-printer. (CVE-2011-2899) All users of system-config-printer are advised to upgrade to these updated packages, which contain a backported patch to resolve this issue. Running instances of system-config-printer must be restarted for this update to take effect. SL4: i386 system-config-printer- system-config-printer-gui- x86_64 system-config-printer- system-config-printer-gui- SL5: i386 system-config-printer- system-config-printer-libs- x86_64 system-config-printer- system-config-printer-libs- - Scientific Linux Development Team

(Log in to post comments)

Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds