Summary: | <net-print/hplip-3.23.12: hpps insecure tmpfile usage | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | John Helmert III <ajak> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | CONFIRMED --- | ||
Severity: | minor | CC: | billie, printing |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://www.openwall.com/lists/oss-security/2023/11/17/1 | ||
Whiteboard: | B3 [glsa? cleanup] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 920285 | ||
Bug Blocks: |
Description
John Helmert III
2023-11-28 19:50:28 UTC
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=7a2ece5a4c4739543919246ece762f98808f7a6f commit 7a2ece5a4c4739543919246ece762f98808f7a6f Author: Daniel Pielmeier <billie@gentoo.org> AuthorDate: 2023-12-08 18:15:55 +0000 Commit: Daniel Pielmeier <billie@gentoo.org> CommitDate: 2023-12-08 18:15:55 +0000 net-print/hplip: add 3.23.12 Bug: https://bugs.gentoo.org/918706 Signed-off-by: Daniel Pielmeier <billie@gentoo.org> net-print/hplip/Manifest | 2 + net-print/hplip/hplip-3.23.12.ebuild | 290 +++++++++++++++++++++++++++++++++++ 2 files changed, 292 insertions(+) I think 3.23.12 fixes this. The patch from openwall is in included in this release. (In reply to Daniel Pielmeier from comment #2) > I think 3.23.12 fixes this. The patch from openwall is in included in this > release. The release notes are, uhm, high level :-) Agreed that the patch is in this version, please file a stable bug when ready. |