Bug 455235 (CVE-2008-2940) - CVE-2008-2940 hpssd of hplip allows unprivileged user to trigger alert mail
Summary: CVE-2008-2940 hpssd of hplip allows unprivileged user to trigger alert mail
Alias: CVE-2008-2940
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
Depends On: 455236 455237 458989 458990 458991
TreeView+ depends on / blocked
Reported: 2008-07-14 10:26 UTC by Marc Schoenefeld
Modified: 2019-09-29 12:25 UTC (History)
8 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Last Closed: 2008-09-11 15:14:50 UTC

Attachments (Terms of Use)
hplip-validate-uri.patch (633 bytes, patch)
2008-07-29 14:50 UTC, Tim Waugh
no flags Details | Diff
hplip-static-alerts-table.patch (1.99 KB, patch)
2008-07-29 14:51 UTC, Tim Waugh
no flags Details | Diff

System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2008:0818 0 normal SHIPPED_LIVE Moderate: hplip security update 2008-08-12 20:16:27 UTC

Comment 2 Marc Schoenefeld 2008-07-14 12:45:31 UTC

hpssd allows unprivileged local users to trigger alert mails 
by sending specially crafted packets

Comment 3 Tim Waugh 2008-07-29 14:50:21 UTC
Created attachment 312878 [details]

This is the first of two patches to address this problem.  This patch performs
validation on the device URI when handling an 'event' message, and improves the
validation code.

Comment 4 Tim Waugh 2008-07-29 14:51:42 UTC
Created attachment 312880 [details]

This is the second patch, which implements a static alerts table, stored in
/etc/hp/alerts.conf.  The 'setalerts' message now has no effect.

Comment 9 Josh Bressers 2008-08-12 20:11:10 UTC
Lifting embargo

Comment 11 Red Hat Product Security 2008-09-11 15:14:50 UTC
This issue was addressed in:

Red Hat Enterprise Linux:

Note You need to log in before you can comment on or make changes to this bug.