This script is Copyright (C) 2013 Tenable Network Security, Inc.
The remote Scientific Linux host is missing one or more security
Several temporary file handling flaws were found in HPLIP. A local
attacker could use these flaws to perform a symbolic link attack,
overwriting arbitrary files accessible to a process using HPLIP.
The hplip packages have been upgraded to upstream version 3.12.4,
which provides a number of bug fixes and enhancements over the
This update also fixes the following bugs :
- Previously, the hpijs package required the obsolete
cupsddk-drivers package, which was provided by the cups
package. Under certain circumstances, this dependency
caused hpijs installation to fail. This bug has been
fixed and hpijs no longer requires cupsddk-drivers.
- The configuration of the Scanner Access Now Easy (SANE)
back end is located in the /etc/sane.d/dll.d/ directory,
however, the hp-check utility checked only the
/etc/sane.d/dll.conf file. Consequently, hp-check
checked for correct installation, but incorrectly
reported a problem with the way the SANE back end was
installed. With this update, hp-check properly checks
for installation problems in both locations as expected.
See also :
Update the affected packages.
Risk factor :
Low / CVSS Base Score : 1.9
Family: Scientific Linux Local Security Checks
Nessus Plugin ID: 65011 ()
CVE ID: CVE-2011-2722CVE-2013-0200
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.