Le vendredi, 25 novembre 2011 12.16:06, Didier Raboud a écrit : > > > > 2. Insecure tempfile handling: > > https://bugzilla.novell.com/show_bug.cgi?id=704608 > > https://bugs.launchpad.net/hplip/+bug/809904 > > This is CVE-2011-2722 > > This seems to be fixed in 3.11.10, hence again, only stable is affected.
The attached dpatch against the version currently in stable does fix that bug. As for oldstable, I couldn't find any occurence of this bug in the source code. Cheers, OdyX
CVE-2011-2722.dpatch
Description: application/shellscript
signature.asc
Description: This is a digitally signed message part.
