{"id":"CVE-2011-2722","details":"The send_data_to_stdout function in prnt/hpijs/hpcupsfax.cpp in HP Linux Imaging and Printing (HPLIP) 3.x before 3.11.10 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/hpcupsfax.out temporary file.","modified":"2026-04-10T03:41:53.423206Z","published":"2012-05-25T20:55:01Z","related":["openSUSE-SU-2024:10083-1"],"references":[{"type":"ADVISORY","url":"http://hplipopensource.com/hplip-web/release_notes.html"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2013-0133.html"},{"type":"ADVISORY","url":"http://secunia.com/advisories/48441"},{"type":"ADVISORY","url":"http://secunia.com/advisories/55083"},{"type":"ADVISORY","url":"http://security.gentoo.org/glsa/glsa-201203-17.xml"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-1981-1"},{"type":"FIX","url":"http://hplipopensource.com/hplip-web/release_notes.html"},{"type":"REPORT","url":"https://bugzilla.novell.com/show_bug.cgi?id=704608"},{"type":"REPORT","url":"https://bugzilla.redhat.com/attachment.cgi?id=515866&action=diff"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=725830"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2011/07/26/14"},{"type":"WEB","url":"https://bugs.launchpad.net/hplip/+bug/809904"}],"schema_version":"1.7.5"}