CVE-2015-8327

EPSS 18.1%

foomatic-filters - security update

Published: 12/17/2015Modified: 4/28/2026

Description

Incomplete blacklist vulnerability in util.c in foomatic-rip in cups-filters 1.0.42 before 1.2.0 and in foomatic-filters in Foomatic 4.0.x allows remote attackers to execute arbitrary commands via ` (backtick) characters in a print job.

Affected packages (5)

Debian/cups-filtersfrom 0, < 1.2.0-1
Debian/cups-filtersfrom 0, < 1.0.61-5+deb8u2
Debian/foomatic-filtersfrom 0, < 4.0.17-7
Debian/foomatic-filtersfrom 0, < 4.0.5-6+squeeze2+deb6u11
Debian/foomatic-filtersfrom 0, < 4.0.17-1+deb7u1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-8327