BID:30683

HP Linux Imaging and Printing System Privilege Escalation And Denial Of Service Vulnerabilities

Info

HP Linux Imaging and Printing System Privilege Escalation And Denial Of Service Vulnerabilities

Bugtraq ID:	30683
Class:	Design Error
CVE:	CVE-2008-2940 CVE-2008-2941
Remote:	No
Local:	Yes
Published:	Aug 12 2008 12:00AM
Updated:	Mar 19 2015 08:51AM
Credit:	Marc Schoenefeld
Vulnerable:	Ubuntu Ubuntu Linux 8.04 LTS sparc Ubuntu Ubuntu Linux 8.04 LTS powerpc Ubuntu Ubuntu Linux 8.04 LTS lpia Ubuntu Ubuntu Linux 8.04 LTS i386 Ubuntu Ubuntu Linux 8.04 LTS amd64 Ubuntu Ubuntu Linux 7.10 sparc Ubuntu Ubuntu Linux 7.10 powerpc Ubuntu Ubuntu Linux 7.10 lpia Ubuntu Ubuntu Linux 7.10 i386 Ubuntu Ubuntu Linux 7.10 amd64 Ubuntu Ubuntu Linux 6.06 LTS sparc Ubuntu Ubuntu Linux 6.06 LTS powerpc Ubuntu Ubuntu Linux 6.06 LTS i386 Ubuntu Ubuntu Linux 6.06 LTS amd64 SuSE SUSE Linux Enterprise Server 10 SP2 SuSE SUSE Linux Enterprise Server 10 SP1 SuSE SUSE Linux Enterprise Desktop 10 SP2 SuSE SUSE Linux Enterprise Desktop 10 SP1 SuSE openSUSE 10.3 S.u.S.E. openSUSE 10.2 rPath rPath Linux 2 Red Hat Enterprise Linux Desktop 5 client Red Hat Enterprise Linux 5 Server Mandriva Linux Mandrake 2008.1 x86_64 Mandriva Linux Mandrake 2008.1 Mandriva Linux Mandrake 2008.0 x86_64 Mandriva Linux Mandrake 2008.0 Mandriva Linux Mandrake 2007.1 x86_64 Mandriva Linux Mandrake 2007.1 MandrakeSoft Corporate Server 4.0 x86_64 MandrakeSoft Corporate Server 4.0 Hewlett Packard HPLIP 1.6.7

Not Vulnerable:

Discussion

HP Linux Imaging and Printing System Privilege Escalation And Denial Of Service Vulnerabilities

HP Linux Imaging and Printing System (HPLIP) is prone to multiple vulnerabilities, including privilege-escalation and denial-of-service issues.

Exploiting the privilege-escalation vulnerability may allow attackers to perform certain actions with elevated privileges. Successful exploits of the denial-of-service issue will cause the 'hpssd' process to crash, denying service to legitimate users.

These issues affect HPLIP 1.6.7; other versions may also be affected.

Exploit / POC

HP Linux Imaging and Printing System Privilege Escalation And Denial Of Service Vulnerabilities

Attackers can use readily available tools to exploit these issues.

Solution / Fix

HP Linux Imaging and Printing System Privilege Escalation And Denial Of Service Vulnerabilities

Solution:
Updates are available. Please see the references for more information.

Mandriva Linux Mandrake 2008.1 x86_64

MandrakeSoft hplip-2.8.2-2.1mdv2008.1.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-doc-2.8.2-2.1mdv2008.1.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-hpijs-2.8.2-2.1mdv2008.1.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-hpijs-ppds-2.8.2-2.1mdv2008.1.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-model-data-2.8.2-2.1mdv2008.1.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft lib64hpip0-2.8.2-2.1mdv2008.1.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft lib64hpip0-devel-2.8.2-2.1mdv2008.1.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft lib64sane-hpaio1-2.8.2-2.1mdv2008.1.x86_64.rpm
http://www.mandriva.com/en/download/

Ubuntu Ubuntu Linux 7.10 powerpc

Ubuntu hpijs-ppds_2.7.7+2.7.7.dfsg.1-0ubuntu5.2_all.deb
http://security.ubuntu.com/ubuntu/pool/universe/h/hplip/hpijs-ppds_2.7 .7+2.7.7.dfsg.1-0ubuntu5.2_all.deb

Ubuntu hpijs_2.7.7+2.7.7.dfsg.1-0ubuntu5.2_powerpc.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hpijs_2.7.7+2.7.7. dfsg.1-0ubuntu5.2_powerpc.deb

Ubuntu hplip-data_2.7.7.dfsg.1-0ubuntu5.2_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-data_2.7.7.d fsg.1-0ubuntu5.2_all.deb

Ubuntu hplip-dbg_2.7.7.dfsg.1-0ubuntu5.2_powerpc.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-dbg_2.7.7.df sg.1-0ubuntu5.2_powerpc.deb

Ubuntu hplip-doc_2.7.7.dfsg.1-0ubuntu5.2_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-doc_2.7.7.df sg.1-0ubuntu5.2_all.deb

Ubuntu hplip-gui_2.7.7.dfsg.1-0ubuntu5.2_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-gui_2.7.7.df sg.1-0ubuntu5.2_all.deb

Ubuntu hplip_2.7.7.dfsg.1-0ubuntu5.2_powerpc.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip_2.7.7.dfsg.1 -0ubuntu5.2_powerpc.deb

Mandriva Linux Mandrake 2008.1

MandrakeSoft hplip-2.8.2-2.1mdv2008.1.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-doc-2.8.2-2.1mdv2008.1.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-hpijs-2.8.2-2.1mdv2008.1.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-hpijs-ppds-2.8.2-2.1mdv2008.1.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-model-data-2.8.2-2.1mdv2008.1.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft libhpip0-2.8.2-2.1mdv2008.1.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft libhpip0-devel-2.8.2-2.1mdv2008.1.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft libsane-hpaio1-2.8.2-2.1mdv2008.1.i586.rpm
http://www.mandriva.com/en/download/

Ubuntu Ubuntu Linux 8.04 LTS powerpc

Ubuntu hpijs-ppds_2.8.2+2.8.2-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hpijs-ppds_2.8.2+2 .8.2-0ubuntu8.1_all.deb

Ubuntu hpijs_2.8.2+2.8.2-0ubuntu8.1_powerpc.deb
http://ports.ubuntu.com/pool/main/h/hplip/hpijs_2.8.2+2.8.2-0ubuntu8.1 _powerpc.deb

Ubuntu hplip-data_2.8.2-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-data_2.8.2-0 ubuntu8.1_all.deb

Ubuntu hplip-dbg_2.8.2-0ubuntu8.1_powerpc.deb
http://ports.ubuntu.com/pool/main/h/hplip/hplip-dbg_2.8.2-0ubuntu8.1_p owerpc.deb

Ubuntu hplip-doc_2.8.2-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-doc_2.8.2-0u buntu8.1_all.deb

Ubuntu hplip-gui_2.8.2-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-gui_2.8.2-0u buntu8.1_all.deb

Ubuntu hplip_2.8.2-0ubuntu8.1_powerpc.deb
http://ports.ubuntu.com/pool/main/h/hplip/hplip_2.8.2-0ubuntu8.1_power pc.deb

Ubuntu Ubuntu Linux 8.04 LTS sparc

Ubuntu hpijs-ppds_2.8.2+2.8.2-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hpijs-ppds_2.8.2+2 .8.2-0ubuntu8.1_all.deb

Ubuntu hpijs_2.8.2+2.8.2-0ubuntu8.1_sparc.deb
http://ports.ubuntu.com/pool/main/h/hplip/hpijs_2.8.2+2.8.2-0ubuntu8.1 _sparc.deb

Ubuntu hplip-data_2.8.2-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-data_2.8.2-0 ubuntu8.1_all.deb

Ubuntu hplip-dbg_2.8.2-0ubuntu8.1_sparc.deb
http://ports.ubuntu.com/pool/main/h/hplip/hplip-dbg_2.8.2-0ubuntu8.1_s parc.deb

Ubuntu hplip-doc_2.8.2-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-doc_2.8.2-0u buntu8.1_all.deb

Ubuntu hplip-gui_2.8.2-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-gui_2.8.2-0u buntu8.1_all.deb

Ubuntu hplip_2.8.2-0ubuntu8.1_sparc.deb
http://ports.ubuntu.com/pool/main/h/hplip/hplip_2.8.2-0ubuntu8.1_sparc .deb

Ubuntu Ubuntu Linux 6.06 LTS sparc

Ubuntu hpijs_2.1.7+0.9.7-4ubuntu1.1_sparc.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hpijs_2.1.7+0.9.7- 4ubuntu1.1_sparc.deb

Ubuntu hplip-data_0.9.7-4ubuntu1.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-data_0.9.7-4 ubuntu1.1_all.deb

Ubuntu hplip-ppds_0.9.7-4ubuntu1.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-ppds_0.9.7-4 ubuntu1.1_all.deb

Ubuntu hplip_0.9.7-4ubuntu1.1_sparc.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip_0.9.7-4ubunt u1.1_sparc.deb

Mandriva Linux Mandrake 2008.0 x86_64

MandrakeSoft hplip-2.7.7-8.2mdv2008.0.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-doc-2.7.7-8.2mdv2008.0.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-hpijs-2.7.7-8.2mdv2008.0.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-hpijs-ppds-2.7.7-8.2mdv2008.0.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-model-data-2.7.7-8.2mdv2008.0.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft lib64hpip0-2.7.7-8.2mdv2008.0.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft lib64hpip0-devel-2.7.7-8.2mdv2008.0.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft lib64sane-hpaio1-2.7.7-8.2mdv2008.0.x86_64.rpm
http://www.mandriva.com/en/download/

Ubuntu Ubuntu Linux 8.04 LTS amd64

Ubuntu hpijs-ppds_2.8.2+2.8.2-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hpijs-ppds_2.8.2+2 .8.2-0ubuntu8.1_all.deb

Ubuntu hpijs_2.8.2+2.8.2-0ubuntu8.1_amd64.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hpijs_2.8.2+2.8.2- 0ubuntu8.1_amd64.deb

Ubuntu hplip-data_2.8.2-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-data_2.8.2-0 ubuntu8.1_all.deb

Ubuntu hplip-dbg_2.8.2-0ubuntu8.1_amd64.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-dbg_2.8.2-0u buntu8.1_amd64.deb

Ubuntu hplip-doc_2.8.2-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-doc_2.8.2-0u buntu8.1_all.deb

Ubuntu hplip-gui_2.8.2-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-gui_2.8.2-0u buntu8.1_all.deb

Ubuntu hplip_2.8.2-0ubuntu8.1_amd64.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip_2.8.2-0ubunt u8.1_amd64.deb

Ubuntu Ubuntu Linux 6.06 LTS powerpc

Ubuntu hpijs_2.1.7+0.9.7-4ubuntu1.1_powerpc.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hpijs_2.1.7+0.9.7- 4ubuntu1.1_powerpc.deb

Ubuntu hplip-data_0.9.7-4ubuntu1.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-data_0.9.7-4 ubuntu1.1_all.deb

Ubuntu hplip-ppds_0.9.7-4ubuntu1.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-ppds_0.9.7-4 ubuntu1.1_all.deb

Ubuntu hplip_0.9.7-4ubuntu1.1_powerpc.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip_0.9.7-4ubunt u1.1_powerpc.deb

Mandriva Linux Mandrake 2008.0

MandrakeSoft hplip-2.7.7-8.2mdv2008.0.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-doc-2.7.7-8.2mdv2008.0.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-hpijs-2.7.7-8.2mdv2008.0.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-hpijs-ppds-2.7.7-8.2mdv2008.0.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-model-data-2.7.7-8.2mdv2008.0.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft libhpip0-2.7.7-8.2mdv2008.0.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft libhpip0-devel-2.7.7-8.2mdv2008.0.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft libsane-hpaio1-2.7.7-8.2mdv2008.0.i586.rpm
http://www.mandriva.com/en/download/

Mandriva Linux Mandrake 2007.1

MandrakeSoft hplip-2.7.7-7.2mdv2007.1.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-doc-2.7.7-7.2mdv2007.1.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-hpijs-2.7.7-7.2mdv2007.1.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-hpijs-ppds-2.7.7-7.2mdv2007.1.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-model-data-2.7.7-7.2mdv2007.1.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft libhpip0-2.7.7-7.2mdv2007.1.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft libhpip0-devel-2.7.7-7.2mdv2007.1.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft libsane-hpaio1-2.7.7-7.2mdv2007.1.i586.rpm
http://www.mandriva.com/en/download/

Ubuntu Ubuntu Linux 7.10 sparc

Ubuntu hpijs-ppds_2.7.7+2.7.7.dfsg.1-0ubuntu5.2_all.deb
http://security.ubuntu.com/ubuntu/pool/universe/h/hplip/hpijs-ppds_2.7 .7+2.7.7.dfsg.1-0ubuntu5.2_all.deb

Ubuntu hpijs_2.7.7+2.7.7.dfsg.1-0ubuntu5.2_sparc.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hpijs_2.7.7+2.7.7. dfsg.1-0ubuntu5.2_sparc.deb

Ubuntu hplip-data_2.7.7.dfsg.1-0ubuntu5.2_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-data_2.7.7.d fsg.1-0ubuntu5.2_all.deb

Ubuntu hplip-dbg_2.7.7.dfsg.1-0ubuntu5.2_sparc.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-dbg_2.7.7.df sg.1-0ubuntu5.2_sparc.deb

Ubuntu hplip-doc_2.7.7.dfsg.1-0ubuntu5.2_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-doc_2.7.7.df sg.1-0ubuntu5.2_all.deb

Ubuntu hplip-gui_2.7.7.dfsg.1-0ubuntu5.2_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-gui_2.7.7.df sg.1-0ubuntu5.2_all.deb

Ubuntu hplip_2.7.7.dfsg.1-0ubuntu5.2_sparc.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip_2.7.7.dfsg.1 -0ubuntu5.2_sparc.deb

Mandriva Linux Mandrake 2007.1 x86_64

MandrakeSoft hplip-2.7.7-7.2mdv2007.1.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-doc-2.7.7-7.2mdv2007.1.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-hpijs-2.7.7-7.2mdv2007.1.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-hpijs-ppds-2.7.7-7.2mdv2007.1.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-model-data-2.7.7-7.2mdv2007.1.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft lib64hpip0-2.7.7-7.2mdv2007.1.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft lib64hpip0-devel-2.7.7-7.2mdv2007.1.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft lib64sane-hpaio1-2.7.7-7.2mdv2007.1.x86_64.rpm
http://www.mandriva.com/en/download/

Ubuntu Ubuntu Linux 8.04 LTS lpia

Ubuntu hpijs-ppds_2.8.2+2.8.2-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hpijs-ppds_2.8.2+2 .8.2-0ubuntu8.1_all.deb

Ubuntu hpijs_2.8.2+2.8.2-0ubuntu8.1_lpia.deb
http://ports.ubuntu.com/pool/main/h/hplip/hpijs_2.8.2+2.8.2-0ubuntu8.1 _lpia.deb

Ubuntu hplip-data_2.8.2-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-data_2.8.2-0 ubuntu8.1_all.deb

Ubuntu hplip-dbg_2.8.2-0ubuntu8.1_lpia.deb
http://ports.ubuntu.com/pool/main/h/hplip/hplip-dbg_2.8.2-0ubuntu8.1_l pia.deb

Ubuntu hplip-doc_2.8.2-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-doc_2.8.2-0u buntu8.1_all.deb

Ubuntu hplip-gui_2.8.2-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-gui_2.8.2-0u buntu8.1_all.deb

Ubuntu hplip_2.8.2-0ubuntu8.1_lpia.deb
http://ports.ubuntu.com/pool/main/h/hplip/hplip_2.8.2-0ubuntu8.1_lpia. deb

Ubuntu Ubuntu Linux 7.10 lpia

Ubuntu hpijs-ppds_2.7.7+2.7.7.dfsg.1-0ubuntu5.2_all.deb
http://security.ubuntu.com/ubuntu/pool/universe/h/hplip/hpijs-ppds_2.7 .7+2.7.7.dfsg.1-0ubuntu5.2_all.deb

Ubuntu hpijs_2.7.7+2.7.7.dfsg.1-0ubuntu5.2_lpia.deb
http://ports.ubuntu.com/pool/main/h/hplip/hpijs_2.7.7+2.7.7.dfsg.1-0ub untu5.2_lpia.deb

Ubuntu hplip-data_2.7.7.dfsg.1-0ubuntu5.2_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-data_2.7.7.d fsg.1-0ubuntu5.2_all.deb

Ubuntu hplip-dbg_2.7.7.dfsg.1-0ubuntu5.2_lpia.deb
http://ports.ubuntu.com/pool/main/h/hplip/hplip-dbg_2.7.7.dfsg.1-0ubun tu5.2_lpia.deb

Ubuntu hplip-doc_2.7.7.dfsg.1-0ubuntu5.2_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-doc_2.7.7.df sg.1-0ubuntu5.2_all.deb

Ubuntu hplip-gui_2.7.7.dfsg.1-0ubuntu5.2_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-gui_2.7.7.df sg.1-0ubuntu5.2_all.deb

Ubuntu hplip_2.7.7.dfsg.1-0ubuntu5.2_lpia.deb
http://ports.ubuntu.com/pool/main/h/hplip/hplip_2.7.7.dfsg.1-0ubuntu5. 2_lpia.deb

Ubuntu Ubuntu Linux 6.06 LTS i386

Ubuntu hpijs_2.1.7+0.9.7-4ubuntu1.1_i386.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hpijs_2.1.7+0.9.7- 4ubuntu1.1_i386.deb

Ubuntu hplip-data_0.9.7-4ubuntu1.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-data_0.9.7-4 ubuntu1.1_all.deb

Ubuntu hplip-ppds_0.9.7-4ubuntu1.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-ppds_0.9.7-4 ubuntu1.1_all.deb

Ubuntu hplip_0.9.7-4ubuntu1.1_i386.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip_0.9.7-4ubunt u1.1_i386.deb

Ubuntu Ubuntu Linux 7.10 i386

Ubuntu hpijs-ppds_2.7.7+2.7.7.dfsg.1-0ubuntu5.2_all.deb
http://security.ubuntu.com/ubuntu/pool/universe/h/hplip/hpijs-ppds_2.7 .7+2.7.7.dfsg.1-0ubuntu5.2_all.deb

Ubuntu hpijs_2.7.7+2.7.7.dfsg.1-0ubuntu5.2_i386.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hpijs_2.7.7+2.7.7. dfsg.1-0ubuntu5.2_i386.deb

Ubuntu hplip-data_2.7.7.dfsg.1-0ubuntu5.2_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-data_2.7.7.d fsg.1-0ubuntu5.2_all.deb

Ubuntu hplip-dbg_2.7.7.dfsg.1-0ubuntu5.2_i386.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-dbg_2.7.7.df sg.1-0ubuntu5.2_i386.deb

Ubuntu hplip-doc_2.7.7.dfsg.1-0ubuntu5.2_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-doc_2.7.7.df sg.1-0ubuntu5.2_all.deb

Ubuntu hplip-gui_2.7.7.dfsg.1-0ubuntu5.2_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-gui_2.7.7.df sg.1-0ubuntu5.2_all.deb

Ubuntu hplip_2.7.7.dfsg.1-0ubuntu5.2_i386.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip_2.7.7.dfsg.1 -0ubuntu5.2_i386.deb

Ubuntu Ubuntu Linux 6.06 LTS amd64

Ubuntu hpijs_2.1.7+0.9.7-4ubuntu1.1_amd64.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hpijs_2.1.7+0.9.7- 4ubuntu1.1_amd64.deb

Ubuntu hplip-data_0.9.7-4ubuntu1.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-data_0.9.7-4 ubuntu1.1_all.deb

Ubuntu hplip-ppds_0.9.7-4ubuntu1.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-ppds_0.9.7-4 ubuntu1.1_all.deb

Ubuntu hplip_0.9.7-4ubuntu1.1_amd64.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip_0.9.7-4ubunt u1.1_amd64.deb

Ubuntu Ubuntu Linux 7.10 amd64

Ubuntu hpijs-ppds_2.7.7+2.7.7.dfsg.1-0ubuntu5.2_all.deb
http://security.ubuntu.com/ubuntu/pool/universe/h/hplip/hpijs-ppds_2.7 .7+2.7.7.dfsg.1-0ubuntu5.2_all.deb

Ubuntu hpijs_2.7.7+2.7.7.dfsg.1-0ubuntu5.2_amd64.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hpijs_2.7.7+2.7.7. dfsg.1-0ubuntu5.2_amd64.deb

Ubuntu hplip-data_2.7.7.dfsg.1-0ubuntu5.2_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-data_2.7.7.d fsg.1-0ubuntu5.2_all.deb

Ubuntu hplip-dbg_2.7.7.dfsg.1-0ubuntu5.2_amd64.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-dbg_2.7.7.df sg.1-0ubuntu5.2_amd64.deb

Ubuntu hplip-doc_2.7.7.dfsg.1-0ubuntu5.2_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-doc_2.7.7.df sg.1-0ubuntu5.2_all.deb

Ubuntu hplip-gui_2.7.7.dfsg.1-0ubuntu5.2_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-gui_2.7.7.df sg.1-0ubuntu5.2_all.deb

Ubuntu hplip_2.7.7.dfsg.1-0ubuntu5.2_amd64.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip_2.7.7.dfsg.1 -0ubuntu5.2_amd64.deb

MandrakeSoft Corporate Server 4.0

MandrakeSoft hplip-1.6.7-2.2.20060mlcs4.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-hpijs-1.6.7-2.2.20060mlcs4.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-hpijs-ppds-1.6.7-2.2.20060mlcs4.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-model-data-1.6.7-2.2.20060mlcs4.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft libhpip0-1.6.7-2.2.20060mlcs4.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft libhpip0-devel-1.6.7-2.2.20060mlcs4.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft libsane-hpaio1-1.6.7-2.2.20060mlcs4.i586.rpm
http://www.mandriva.com/en/download/

Ubuntu Ubuntu Linux 8.04 LTS i386

Ubuntu hpijs-ppds_2.8.2+2.8.2-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hpijs-ppds_2.8.2+2 .8.2-0ubuntu8.1_all.deb

Ubuntu hpijs_2.8.2+2.8.2-0ubuntu8.1_i386.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hpijs_2.8.2+2.8.2- 0ubuntu8.1_i386.deb

Ubuntu hplip-data_2.8.2-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-data_2.8.2-0 ubuntu8.1_all.deb

Ubuntu hplip-dbg_2.8.2-0ubuntu8.1_i386.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-dbg_2.8.2-0u buntu8.1_i386.deb

Ubuntu hplip-doc_2.8.2-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-doc_2.8.2-0u buntu8.1_all.deb

Ubuntu hplip-gui_2.8.2-0ubuntu8.1_all.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip-gui_2.8.2-0u buntu8.1_all.deb

Ubuntu hplip_2.8.2-0ubuntu8.1_i386.deb
http://security.ubuntu.com/ubuntu/pool/main/h/hplip/hplip_2.8.2-0ubunt u8.1_i386.deb

MandrakeSoft Corporate Server 4.0 x86_64

MandrakeSoft hplip-1.6.7-2.2.20060mlcs4.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-hpijs-1.6.7-2.2.20060mlcs4.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-hpijs-ppds-1.6.7-2.2.20060mlcs4.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft hplip-model-data-1.6.7-2.2.20060mlcs4.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft lib64hpip0-1.6.7-2.2.20060mlcs4.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft lib64hpip0-devel-1.6.7-2.2.20060mlcs4.x86_64.rpm
http://www.mandriva.com/en/download/

MandrakeSoft lib64sane-hpaio1-1.6.7-2.2.20060mlcs4.x86_64.rpm
http://www.mandriva.com/en/download/

References

HP Linux Imaging and Printing System Privilege Escalation And Denial Of Service Vulnerabilities

References:

HPLIP Homepage (HPLIP)
Moderate: hplip security update (Red Hat)