CVE-2015-8327

EPSS 18.1%

foomatic-filters - security update

發布日:2015/12/17修改日:2026/4/28

描述

Incomplete blacklist vulnerability in util.c in foomatic-rip in cups-filters 1.0.42 before 1.2.0 and in foomatic-filters in Foomatic 4.0.x allows remote attackers to execute arbitrary commands via ` (backtick) characters in a print job.

受影響套件(5)

Debian/cups-filtersfrom 0, < 1.2.0-1
Debian/cups-filtersfrom 0, < 1.0.61-5+deb8u2
Debian/foomatic-filtersfrom 0, < 4.0.17-7
Debian/foomatic-filtersfrom 0, < 4.0.5-6+squeeze2+deb6u11
Debian/foomatic-filtersfrom 0, < 4.0.17-1+deb7u1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-8327