Candidate: CVE-2014-4336
PublicDate: 2014-06-22 21:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4336
 http://bzr.linuxfoundation.org/loggerhead/openprinting/cups-filters/revision/7194
 https://ubuntu.com/security/notices/USN-2210-1
Description:
 The generate_local_queue function in utils/cups-browsed.c in cups-browsed
 in cups-filters before 1.0.53 allows remote IPP printers to execute
 arbitrary commands via shell metacharacters in the host name.  NOTE: this
 vulnerability exists because of an incomplete fix for CVE-2014-2707.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_cups-filters:
upstream_cups-filters: released (1.0.53-1)
lucid_cups-filters: DNE
precise_cups-filters: not-affected (code not present)
saucy_cups-filters: not-affected (code not present)
trusty_cups-filters: released (1.0.52-0ubuntu1.1)
trusty/esm_cups-filters: DNE (trusty was released [1.0.52-0ubuntu1.1])
devel_cups-filters: not-affected (1.0.53-1build1)