CVE-2009-0122

Publication date 15 January 2009

Last updated 24 July 2024

Ubuntu priority

hplip.postinst in HP Linux Imaging and Printing (HPLIP) 2.7.7 and 2.8.2 on Ubuntu allows local users to change the ownership of arbitrary files via unspecified manipulations in advance of an HPLIP installation or upgrade by an administrator, related to the product's attempt to correct the ownership of its configuration files within home directories.

Read the notes from the security team

Status

Show unmaintained releases

Package	Ubuntu Release	Status
hplip	8.10 intrepid	Not affected
	8.04 LTS hardy	Not affected
	7.10 gutsy	Fixed 2.7.7.dfsg.1-0ubuntu5.3
	6.06 LTS dapper	Not affected

How can I get the fixes?
What do statuses mean?

Notes

mdeslaur

only affected gutsy

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-708-1
HPLIP vulnerability
13 January 2009

Other references

https://www.cve.org/CVERecord?id=CVE-2009-0122