Your submission was sent successfully! Close

USN-708-1: HPLIP vulnerability

13 January 2009

HPLIP vulnerability




It was discovered that an installation script in the HPLIP package would
change permissions on the hplip config files located in user's home directories.
A local user could exploit this and change permissions on arbitrary files
upon an HPLIP installation or upgrade, which could lead to root privileges.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 7.10

In general, a standard system upgrade is sufficient to effect the
necessary changes.