PublicDateAtUSN: 2011-07-29
Candidate: CVE-2011-2964
PublicDate: 2011-07-29 20:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2964
 https://ubuntu.com/security/notices/USN-1194-1
Description:
 foomaticrip.c in foomatic-rip in foomatic-filters in Foomatic 4.0.6 allows
 remote attackers to execute arbitrary code via a crafted
 *FoomaticRIPCommandLine field in a .ppd file, a different vulnerability
 than CVE-2011-2697.
Ubuntu-Description:
Notes:
 mdeslaur> hardy has the perl script instead. See CVE-2011-2697.
Bugs:
 https://bugzilla.redhat.com/show_bug.cgi?id=721001
 https://bugzilla.novell.com/show_bug.cgi?id=698451
Priority: medium
Discovered-by:
Assigned-to: mdeslaur
CVSS: 

Patches_foomatic-filters:
 upstream: http://bzr.linuxfoundation.org/loggerhead/openprinting/foomatic/foomatic-filters/revision/252
upstream_foomatic-filters: released (4.0.8)
Tags_foomatic-filters: apparmor
hardy_foomatic-filters: not-affected (code not present)
lucid_foomatic-filters: released (4.0.4-0ubuntu1.1)
maverick_foomatic-filters: released (4.0.5-0ubuntu3.1)
natty_foomatic-filters: released (4.0.7-0ubuntu1.1)
devel_foomatic-filters: not-affected (4.0.8-0ubuntu2)