Alerts This Week
Warning Icon 1 619
Alerts This Week
Warning Icon 1 619

Slackware 14.0 Critical: Hplip Access Control Issue Fixed

slackware
Calendar Grey October 19, 2013
Dist Slackware Esm H88
Recent hplip releases for various Slackware editions address significant vulnerabilities, particularly related to access controls.
New hplip packages are available for Slackware 13.1, 13.37, 14.0, and -current to fix security issues

Summary

Here are the details from the Slackware 14.0 ChangeLog: patches/packages/hplip-3.12.9-i486-3_slack14.0.txz: Rebuilt. This fixes a polkit race condition that could allow local users to bypass intended access restrictions. For more information, see: https://www.cve.org/CVERecord?id=CVE-2013-4325 (* Security fix *)

Topics%20covered

Topics Covered

security advisory critical software update access control security fix slackware hplip

Where Find New Packages

Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 13.1: ftp://ftp.slackware.com/pub/slackware/slackware-13.1/patches/packages/hplip-3.10.2-i486-4_slack13.1.txz
Updated package for Slackware x86_64 13.1: ftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/hplip-3.10.2-x86_64-4_slack13.1.txz
Updated package for Slackware 13.37: ftp://ftp.slackware.com/pub/slackware/slackware-13.37/patches/packages/hplip-3.11.3a-i486-3_slack13.37.txz
Updated package for Slackware x86_64 13.37: ftp://ftp.slackware.com/pub/slackware/slackware64-13.37/patches/packages/hplip-3.11.3a-x86_64-3_slack13.37.txz
Updated package for Slackware 14.0:
Updated package for Slackware x86_64 14.0:
Updated package for Slackware -current:
Updated package for Slackware x86_64 -current:

MD5 Signatures

Slackware 13.1 package: b8e9751d52f601e1b1a44a6e979736c2 hplip-3.10.2-i486-4_slack13.1.txz
Slackware x86_64 13.1 package: 400411af72dabf145457b8be697b8bd3 hplip-3.10.2-x86_64-4_slack13.1.txz
Slackware 13.37 package: 2b2775c70060684c5bfec3470a1fa8f0 hplip-3.11.3a-i486-3_slack13.37.txz
Slackware x86_64 13.37 package: 888408e24ef6a8f0b7fd06ca968ee042 hplip-3.11.3a-x86_64-3_slack13.37.txz
Slackware 14.0 package: 8598d8d0f5a64405188637ef4e6b5304 hplip-3.12.9-i486-3_slack14.0.txz
Slackware x86_64 14.0 package: ad8ed1dcf3ea7235c97e85679a28ba87 hplip-3.12.9-x86_64-3_slack14.0.txz
Slackware -current package: 12632dcd6a0dd7b8e997b334932f4798 ap/hplip-3.13.10-i486-1.txz
Slackware x86_64 -current package: b76b741f1b207fddbd2bd5de1f0c2180 ap/hplip-3.13.10-x86_64-1.txz

Severity
critical
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory critical software update access control security fix slackware hplip

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg hplip-3.12.9-i486-3_slack14.0.txz

Related News

Your message here