BDU:2015-09753

Уязвимости операционной системы Gentoo Linux, позволяющие злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации

Severity: HIGH (8.3) Vector: AV:A/AC:L/Au:N/C:C/I:C/A:C

References:

CVE-2013-6473
CVE-2013-6474
CVE-2013-6475
CVE-2013-6476
CVE-2014-2707
GLSA-201406-16

Published: 2014-04-17
Modified: 2025-04-12

CVE-2014-2707

cups-browsed in cups-filters 1.0.41 before 1.0.51 allows remote IPP printers to execute arbitrary commands via shell metacharacters in the (1) model or (2) PDL, related to "System V interface scripts generated for queues."

Severity: HIGH (8.3) Vector: AV:A/AC:L/Au:N/C:C/I:C/A:C

References:

http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7188#NEWS
http://lists.fedoraproject.org/pipermail/package-announce/2014-April/131485.html
http://seclists.org/oss-sec/2014/q2/13
http://secunia.com/advisories/57530
http://www.ubuntu.com/usn/USN-2210-1
https://bugzilla.redhat.com/show_bug.cgi?id=1083326
http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7188#NEWS
http://lists.fedoraproject.org/pipermail/package-announce/2014-April/131485.html
http://seclists.org/oss-sec/2014/q2/13
http://secunia.com/advisories/57530
http://www.ubuntu.com/usn/USN-2210-1
https://bugzilla.redhat.com/show_bug.cgi?id=1083326

Version: 2.1.2

Package cups-filters update in sisyphus on 2014-04-08

ALT-PU-2014-1459-1

Closed vulnerabilities

BDU:2015-09753

CVE-2014-2707