USN-2838-2: foomatic-filters vulnerability
16 December 2015
foomatic-filters could be made to run programs as the lp user if it processed a specially crafted print job.
- foomatic-filters - OpenPrinting printer support - filters
Adam Chester discovered that the foomatic-filters foomatic-rip filter
incorrectly stripped shell escape characters. A remote attacker could
possibly use this issue to execute arbitrary code as the lp user.
- USN-2838-1: cups-browsed, libcupsfilters1, cups-filters-core-drivers, libfontembed-dev, libcupsfilters-dev, cups-filters, libfontembed1