1
PublicDateAtUSN: 2013-09-18
2
Candidate: CVE-2013-4325
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4325
6
https://usn.ubuntu.com/usn/usn-1956-1
8
The check_permission_v1 function in base/pkit.py in HP Linux Imaging and
9
Printing (HPLIP) through 3.13.9 does not properly use D-Bus for
10
communication with a polkit authority, which allows local users to bypass
11
intended access restrictions by leveraging a PolkitUnixProcess
12
PolkitSubject race condition via a (1) setuid process or (2) pkexec
22
upstream_hplip: needs-triage
23
lucid_hplip: released (3.10.2-2ubuntu2.3)
24
precise_hplip: released (3.12.2-1ubuntu3.2)
25
quantal_hplip: released (3.12.6-3ubuntu4.1)
26
raring_hplip: released (3.13.3-1ubuntu0.1)
27
devel_hplip: released (3.13.9-0ubuntu2)