USN-2838-1: cups-filters vulnerability
16 December 2015
cups-filters could be made to run programs as the lp user if it processed a specially crafted print job.
- cups-filters - OpenPrinting CUPS Filters
Adam Chester discovered that the cups-filters foomatic-rip filter
incorrectly stripped shell escape characters. A remote attacker could
possibly use this issue to execute arbitrary code as the lp user.
The problem can be corrected by updating your system to the following package versions:
In general, a standard system update will make all the necessary changes.
- USN-2838-2: foomatic-filters