VDB

GCVE-110-MAGEIA-2015-336

GCVE-110-MAGEIA-2015-336
Advisory Published
Vulnetix · Advisory published September 8, 2015
Updated hplip packages fix security vulnerability: It was reported that the hp-plugin utility, included in the hplip package, downloads a binary driver and verifies it via a key specified by the key's short ID. A man-in-the-middle attacker could use this flaw to generate a key with the expected short ID and trick a user into downloading a malicious binary (CVE-2015-0839).

Affected Products

VendorProductVersionsPlatforms
Mageiahplip0 (affected), 3.13.9-4.1.mga4 (unaffected)
Mageiahplip0 (affected), 3.14.6-8.1.mga5 (unaffected)

Browse GCVE Records

72,337 records in the GCVE database · Updated July 14, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›