You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa hplip

Sigurnosni nedostatak programskog paketa hplip

——————————————————————————–
Fedora Update Notification
FEDORA-2015-11723
2015-07-17 23:27:37
——————————————————————————–

Name : hplip
Product : Fedora 22
Version : 3.15.7
Release : 1.fc22
URL : http://hplip.sourceforge.net/
Summary : HP Linux Imaging and Printing Project
Description :
The Hewlett-Packard Linux Imaging and Printing Project provides
drivers for HP printers and multi-function peripherals.

——————————————————————————–
Update Information:

New upstream bug-fix release, which fixes CVE-2015-0839
——————————————————————————–
ChangeLog:

* Wed Jul 15 2015 Jiri Popelka <jpopelka@redhat.com> – 3.15.7-1
– 3.15.7
* Wed Jun 10 2015 Jiri Popelka <jpopelka@redhat.com> – 3.15.6-1
– 3.15.6
* Thu Apr 16 2015 Jiri Popelka <jpopelka@redhat.com> – 3.15.4-1
– 3.15.4
——————————————————————————–
References:

[ 1 ] Bug #1227252 – CVE-2015-0839 hplip: hp-plugin verified binary download with short key ID
https://bugzilla.redhat.com/show_bug.cgi?id=1227252
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update hplip’ at the command line.
For more information, refer to “Managing Software with yum”,
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-11916
2015-07-21 23:37:57
--------------------------------------------------------------------------------

Name        : hplip
Product     : Fedora 21
Version     : 3.14.10
Release     : 9.fc21
URL         : http://hplip.sourceforge.net/
Summary     : HP Linux Imaging and Printing Project
Description :
The Hewlett-Packard Linux Imaging and Printing Project provides
drivers for HP printers and multi-function peripherals.

--------------------------------------------------------------------------------
Update Information:

fixes CVE-2015-0839
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jul 21 2015 Jiri Popelka  - 3.14.10-9
- Insecure binary driver verification (CVE-2015-0839, bug #1227253)
* Mon Mar 16 2015 Tim Waugh  - 3.14.10-8
- Ignore IOError when logging output (bug #712537).
* Wed Jan 21 2015 Tim Waugh  - 3.14.10-7
- Fixed uses of strncpy throughout.
* Wed Jan 14 2015 Tim Waugh  - 3.14.10-6
- Requires python3-cups to get postscriptdriver() tags.
* Tue Dec 23 2014 Tim Waugh  - 3.14.10-5
- Fixed left/right margins for HP DeskJet 990C (LP #1405212).
* Tue Nov  4 2014 Tim Waugh  - 3.14.10-4
- IEEE 1284 Device ID for HP LaserJet Professional M1132 MFP
  (bug #1158743 comment #5).
- IEEE 1284 Device ID for HP LaserJet Color M451dn (bug #1159380).
* Fri Oct 31 2014 Tim Waugh  - 3.14.10-3
- Fixed build against libjpeg-turbo 1.3.90.
* Fri Oct 31 2014 Tim Waugh  - 3.14.10-2
- Fixed incorrect name in function call in makeURI when a parallel
  port device is used (bug #1159161).
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1227252 - CVE-2015-0839 hplip: hp-plugin verified binary download with short key ID
        https://bugzilla.redhat.com/show_bug.cgi?id=1227252
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use
su -c 'yum update hplip' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce
Top
More in Preporuke
Sigurnosni nedostaci programskog paketa subversion

Otkriveni su sigurnosni nedostaci u programskom paketu subversion za operacijski sustav Fedora. Otkriveni nedostaci potencijalnim napadačima omogućuju izvođenje napada uskraćivanja...

Close