Mandrake Local Security Checks : Mandriva Security Advisory MDVSA-2011:125 (foomatic-filters)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.70104

Categoría: Mandrake Local Security Checks

Título: Mandriva Security Advisory MDVSA-2011:125 (foomatic-filters)

Resumen: NOSUMMARY

Descripción: Description:
The remote host is missing an update to foomatic-filters
announced via advisory MDVSA-2011:125.

A vulnerability has been discovered and corrected in foomatic-filters:

foomatic-rip allows remote attackers to execute arbitrary code via a
crafted *FoomaticRIPCommandLine field in a .ppd file (CVE-2011-2697,
CVE-2011-2964).

Packages for 2009.0 are provided as of the Extended Maintenance
Program. Please visit this link to learn more:
http://store.mandriva.com/product_info.php?cPath=149&products_id=490

The updated packages have been patched to correct this issue.

Affected: 2009.0, 2010.1, Corporate 4.0, Enterprise Server 5.0

Solution:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2011:125

Risk factor : High

CVSS Score:
6.8

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2011-2697
GLSA-201203-07
http://security.gentoo.org/glsa/glsa-201203-07.xml
MDVSA-2011:125
http://www.mandriva.com/security/advisories?name=MDVSA-2011:125
USN-1194-1
http://www.ubuntu.com/usn/USN-1194-1
[oss-security] 20110713 CVE Request: hplip/foomatic-filters
http://www.openwall.com/lists/oss-security/2011/07/13/3
[oss-security] 20110718 Re: CVE Request: hplip/foomatic-filters
http://www.openwall.com/lists/oss-security/2011/07/18/3
[oss-security] 20110728 Re: CVE Request: hplip/foomatic-filters
http://www.openwall.com/lists/oss-security/2011/07/28/1
hplinuxprinting-foomaticriphplip-code-exec(68993)
https://exchange.xforce.ibmcloud.com/vulnerabilities/68993
http://www.xerox.com/download/security/security-bulletin/16287-4d6b7b0c81f7b/cert_XRX13-003_v1.0.pdf
https://bugzilla.novell.com/show_bug.cgi?id=698451
https://bugzilla.redhat.com/show_bug.cgi?id=721001
Common Vulnerability Exposure (CVE) ID: CVE-2011-2964
http://www.redhat.com/support/errata/RHSA-2011-1110.html
http://secunia.com/advisories/45477
XForce ISS Database: foomatic-foomatic-code-execution(68994)
https://exchange.xforce.ibmcloud.com/vulnerabilities/68994

Copyright Copyright (c) 2011 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.70104
Categoría:	Mandrake Local Security Checks
Título:	Mandriva Security Advisory MDVSA-2011:125 (foomatic-filters)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to foomatic-filters announced via advisory MDVSA-2011:125. A vulnerability has been discovered and corrected in foomatic-filters: foomatic-rip allows remote attackers to execute arbitrary code via a crafted *FoomaticRIPCommandLine field in a .ppd file (CVE-2011-2697, CVE-2011-2964). Packages for 2009.0 are provided as of the Extended Maintenance Program. Please visit this link to learn more: http://store.mandriva.com/product_info.php?cPath=149&products_id=490 The updated packages have been patched to correct this issue. Affected: 2009.0, 2010.1, Corporate 4.0, Enterprise Server 5.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2011:125 Risk factor : High CVSS Score: 6.8
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2011-2697 GLSA-201203-07 http://security.gentoo.org/glsa/glsa-201203-07.xml MDVSA-2011:125 http://www.mandriva.com/security/advisories?name=MDVSA-2011:125 USN-1194-1 http://www.ubuntu.com/usn/USN-1194-1 [oss-security] 20110713 CVE Request: hplip/foomatic-filters http://www.openwall.com/lists/oss-security/2011/07/13/3 [oss-security] 20110718 Re: CVE Request: hplip/foomatic-filters http://www.openwall.com/lists/oss-security/2011/07/18/3 [oss-security] 20110728 Re: CVE Request: hplip/foomatic-filters http://www.openwall.com/lists/oss-security/2011/07/28/1 hplinuxprinting-foomaticriphplip-code-exec(68993) https://exchange.xforce.ibmcloud.com/vulnerabilities/68993 http://www.xerox.com/download/security/security-bulletin/16287-4d6b7b0c81f7b/cert_XRX13-003_v1.0.pdf https://bugzilla.novell.com/show_bug.cgi?id=698451 https://bugzilla.redhat.com/show_bug.cgi?id=721001 Common Vulnerability Exposure (CVE) ID: CVE-2011-2964 http://www.redhat.com/support/errata/RHSA-2011-1110.html http://secunia.com/advisories/45477 XForce ISS Database: foomatic-foomatic-code-execution(68994) https://exchange.xforce.ibmcloud.com/vulnerabilities/68994
Copyright	Copyright (c) 2011 E-Soft Inc. http://www.securityspace.com