CVE-2004-0801
SUSE LINUX 10.0,SUSE LINUX 10.1,SUSE LINUX 9.3,SUSE LINUX Retail Solution 8,SUSE Linux Enterprise Desktop 11 SP1,SUSE Linux Enterprise Server 11 SP1,SUSE Linux Enterprise Server 11 SP1 for VMware,SuSE Linux Desktop 1.0,SuSE Linux Enterprise Server 8 for AMD64,SuSE Linux Enterprise Server 8 for IBM iSeries and IBM pSeries,SuSE Linux Enterprise Server 8 for IBM zSeries,SuSE Linux Enterprise Server 8 for IPF,SuSE Linux Openexchange Server 4,SuSE Linux School Server for i386,SuSE Linux Standard Server 8,UnitedLinux 1.0,openSUSE 11.3,openSUSE 11.4
CVE-2004-0801, security advisory, novell, suse linux, suse, security, cve

CVE-2004-0801

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2004-0801 at MITRE

Description

Unknown vulnerability in foomatic-rip in Foomatic before 3.0.2 allows local users or remote attackers with access to CUPS to execute arbitrary commands.

SUSE information

CVSS v2 Scores
  National Vulnerability Database
Base Score 7.48
Vector AV:N/AC:L/Au:N/C:P/I:P/A:P
Access Vector Network
Access Complexity Low
Authentication None
Confidentiality Impact Partial
Integrity Impact Partial
Availability Impact Partial

This issue is currently rated as having important severity.

SUSE Bugzilla entries: 59233 [RESOLVED / FIXED], 698451 [RESOLVED / FIXED], 704608 [RESOLVED / FIXED], 852368 [RESOLVED / FIXED], 957531 [IN_PROGRESS]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
openSUSE 11.3
  • hplip-debuginfo >= 3.10.2-2.5.1
  • hplip-debugsource >= 3.10.2-2.5.1
  • hplip-hpijs-debuginfo >= 3.10.2-2.5.1
openSUSE 11.3
  • hplip >= 3.10.2-2.5.1
  • hplip-hpijs >= 3.10.2-2.5.1
openSUSE 11.4
  • hplip >= 3.11.5-1.5.1
  • hplip-hpijs >= 3.11.5-1.5.1
SUSE LINUX 10.0
  • foomatic-filters >= 3.0.2-4.2
SUSE LINUX 10.1
  • foomatic-filters >= 3.0.2-20.3
SUSE LINUX 9.3
  • foomatic-filters >= 3.0.2-3.2
SUSE Linux Enterprise Desktop 11 SP1
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP1 for VMware
  • hplip >= 3.9.8-3.7.1
  • hplip-hpijs >= 3.9.8-3.7.1
sled11-sp1.x86-64
sles11-sp1.s390x
sles11-sp1.ia64
sles11-sp1-vmware.x86-64
sled11-sp1.x86
sles11-sp1-vmware.x86
sles11-sp1.ppc
sles11-sp1.x86
sles11-sp1.x86-64
SAT Patch Nr: 4989
SuSE Linux Desktop 1.0
  • cups >= 1.1.15-167
  • cups-client >= 1.1.15-167
  • cups-devel >= 1.1.15-167
  • cups-libs >= 1.1.15-167
ul1.s390
slox4,2.x86
ul1.x86-64
ul1.ia64
ul1.s390x
ul1.ppc
YOU Patch Nr: 9321
SUSE LINUX Retail Solution 8
SuSE Linux Enterprise Server 8 for AMD64
SuSE Linux Enterprise Server 8 for IBM iSeries and IBM pSeries
SuSE Linux Enterprise Server 8 for IBM zSeries
SuSE Linux Enterprise Server 8 for IPF
SuSE Linux Openexchange Server 4
SuSE Linux School Server for i386
SuSE Linux Standard Server 8
UnitedLinux 1.0
  • cups >= 1.1.15-170
  • cups-client >= 1.1.15-170
  • cups-devel >= 1.1.15-170
  • cups-libs >= 1.1.15-170
ul1.s390
slox4,2.x86
ul1.x86-64
ul1.ia64
ul1.s390x
ul1.ppc
YOU Patch Nr: 9321
openSUSE 11.4
  • hplip >= 3.11.5-1.5.1
  • hplip-debuginfo >= 3.11.5-1.5.1
  • hplip-debugsource >= 3.11.5-1.5.1
  • hplip-hpijs >= 3.11.5-1.5.1
  • hplip-hpijs-debuginfo >= 3.11.5-1.5.1
Patchnames:
hplip