Search CVE reports
31 – 40 of 134 results
CVE-2017-7884
Low priorityIn Adam Kropelin adk0212 APC UPS Daemon through 3.14.14, the default installation of APCUPSD allows a local authenticated, but unprivileged, user to run arbitrary code with elevated privileges by replacing the service executable...
1 affected package
apcupsd
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| apcupsd | — | — | — | — |
CVE-2010-5325
Medium priorityHeap-based buffer overflow in the unhtmlify function in foomatic-rip in foomatic-filters before 4.0.6 allows remote attackers to cause a denial of service (memory corruption and crash) or possibly execute arbitrary code via a long...
2 affected packages
cups-filters, foomatic-filters
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| cups-filters | — | — | — | — |
| foomatic-filters | — | — | — | — |
CVE-2015-8560
Medium prioritySome fixes available 5 of 7
Incomplete blacklist vulnerability in util.c in foomatic-rip in cups-filters 1.0.42 before 1.4.0 and in foomatic-filters in Foomatic 4.0.x allows remote attackers to execute arbitrary commands via a ; (semicolon) character in a...
2 affected packages
cups-filters, foomatic-filters
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| cups-filters | — | — | — | — |
| foomatic-filters | — | — | — | — |
CVE-2015-8327
Medium prioritySome fixes available 5 of 7
Incomplete blacklist vulnerability in util.c in foomatic-rip in cups-filters 1.0.42 before 1.2.0 and in foomatic-filters in Foomatic 4.0.x allows remote attackers to execute arbitrary commands via ` (backtick) characters in a print job.
2 affected packages
cups-filters, foomatic-filters
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| cups-filters | — | — | — | — |
| foomatic-filters | — | — | — | — |
CVE-2015-6520
Medium prioritySome fixes available 1 of 2
IPPUSBXD before 1.22 listens on all interfaces, which allows remote attackers to obtain access to USB connected printers via a direct request.
2 affected packages
cups-filters, ippusbxd
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| cups-filters | — | — | — | — |
| ippusbxd | — | — | — | — |
CVE-2015-3279
Medium priorityInteger overflow in filter/texttopdf.c in texttopdf in cups-filters before 1.0.71 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted line size in a print job, which...
1 affected package
cups-filters
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| cups-filters | — | — | — | — |
CVE-2015-3258
Medium priorityHeap-based buffer overflow in the WriteProlog function in filter/texttopdf.c in texttopdf in cups-filters before 1.0.70 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a small...
1 affected package
cups-filters
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| cups-filters | — | — | — | — |
CVE-2015-1159
Medium priorityCross-site scripting (XSS) vulnerability in the cgi_puts function in cgi-bin/template.c in the template engine in CUPS before 2.0.3 allows remote attackers to inject arbitrary web script or HTML via the QUERY parameter to help/.
1 affected package
cups
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| cups | — | — | — | — |
CVE-2015-1158
High priorityThe add_job function in scheduler/ipp.c in cupsd in CUPS before 2.0.3 performs incorrect free operations for multiple-value job-originating-host-name attributes, which allows remote attackers to trigger data corruption for...
1 affected package
cups
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| cups | — | — | — | — |
CVE-2015-2305
Medium prioritySome fixes available 31 of 85
Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library (aka rxspencer) alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to...
23 affected packages
alpine, clamav, cups, efl, haskell-regex-posix...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| alpine | Not affected | Not affected | Not affected | Not affected |
| clamav | Fixed | Fixed | Fixed | Fixed |
| cups | Not affected | Not affected | Not affected | Not affected |
| efl | Not affected | Not affected | Not affected | Not affected |
| haskell-regex-posix | Not affected | Not affected | Not affected | Not affected |
| knews | Not affected | Not affected | Not affected | Not affected |
| librcsb-core-wrapper | Not affected | Not affected | Not affected | Not affected |
| llvm-toolchain-3.4 | Not in release | Not in release | Not in release | Not in release |
| llvm-toolchain-3.5 | Not in release | Not in release | Not in release | Not in release |
| llvm-toolchain-3.6 | Not in release | Not in release | Not in release | Not in release |
| llvm-toolchain-snapshot | Not in release | Not in release | Not in release | Not in release |
| newlib | Not affected | Not affected | Not affected | Not affected |
| nvi | Not affected | Not affected | Not affected | Not affected |
| olsrd | Not in release | Not in release | Not in release | Not affected |
| openrpt | Not in release | Not in release | Not in release | Vulnerable |
| php5 | Not in release | Not in release | Not in release | Not in release |
| ptlib | Not in release | Not in release | Not in release | Not affected |
| radare2 | Not affected | Not in release | Not affected | Not affected |
| sma | Not affected | Not affected | Not affected | Not affected |
| vigor | Not affected | Not affected | Not affected | Not affected |
| vnc4 | Not in release | Not in release | Not in release | Not affected |
| yap | Not in release | Not in release | Not in release | Not affected |
| z88dk | Not in release | Not in release | Not in release | Not in release |