VDB
GCVE-110-MAGEIA-2015-336
GCVE-110-MAGEIA-2015-336
Advisory Published
Updated hplip packages fix security vulnerability:
It was reported that the hp-plugin utility, included in the hplip package,
downloads a binary driver and verifies it via a key specified by the key's
short ID. A man-in-the-middle attacker could use this flaw to generate a key
with the expected short ID and trick a user into downloading a malicious
binary (CVE-2015-0839).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | hplip | 0 (affected), 3.13.9-4.1.mga4 (unaffected) | — |
| Mageia | hplip | 0 (affected), 3.14.6-8.1.mga5 (unaffected) | — |
Aliases
References
Browse GCVE Records
72,337 records in the GCVE database · Updated July 14, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.