CVE-2011-2964
Published: 29 July 2011
foomaticrip.c in foomatic-rip in foomatic-filters in Foomatic 4.0.6 allows remote attackers to execute arbitrary code via a crafted *FoomaticRIPCommandLine field in a .ppd file, a different vulnerability than CVE-2011-2697.
Notes
Author | Note |
---|---|
mdeslaur | hardy has the perl script instead. See CVE-2011-2697. |
Priority
Status
Package | Release | Status |
---|---|---|
foomatic-filters Launchpad, Ubuntu, Debian |
hardy |
Not vulnerable
(code not present)
|
lucid |
Released
(4.0.4-0ubuntu1.1)
|
|
maverick |
Released
(4.0.5-0ubuntu3.1)
|
|
natty |
Released
(4.0.7-0ubuntu1.1)
|
|
upstream |
Released
(4.0.8)
|
|
Patches: upstream: http://bzr.linuxfoundation.org/loggerhead/openprinting/foomatic/foomatic-filters/revision/252 |
||
This vulnerability is mitigated in part by an AppArmor profile. |