October 4, 2000

Security update to lpr

Author: JT Smith

LWN.net has the advisory: "lpr has a format string security bug. It also mishandles any extension to
the lpd communication protocol, and assumes that the instructions contained
in the extension are a file it should try to print. It also has a race
condition in the handling of queue interactions that can cause the queue to
wedge."

Category:

  • Linux
Click Here!