It was found that /var/log/hp and /var/log/hp/tmp are both world-writeable in hplip 3.12.x. This flaw could be used to delete log files from the /var/log/hp directory. This flaw has been assigned CVE-2012-6108. External Reference: https://bugs.launchpad.net/hplip/+bug/1016507/comments/1
Statement: Not Vulnerable. This issue does not affect the version of hplip and hplip3 as shipped with Red Hat Enterprise Linux 5. This issue does not affect the version of hplip as shipped with Red Hat Enterprise Linux 6.
This issue does not affect the version of hplip as shipped with Fedora 16, Fedora 17 and Fedora 18.