CVE-2011-2924 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2011-2924 Interim 1 15 2023-07-03T01:53:57Z current 2021-05-30T12:58:50Z 2023-07-03T01:53:57Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2011-2924 foomatic-rip filter v4.0.12 and prior used insecurely creates temporary files for storage of PostScript data by rendering the data when the debug mode was enabled. This flaw may be exploited by a local attacker to conduct symlink attacks by overwriting arbitrary files accessible with the privileges of the user running the foomatic-rip universal print filter. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Server 11 SP1 for Teradata SUSE Linux Enterprise Server 11 SP3 for Teradata SUSE Linux Enterprise Server 11 SP4 LTSS foomatic-filters foomatic-filters as a component of SUSE Linux Enterprise Server 11 SP1 for Teradata foomatic-filters as a component of SUSE Linux Enterprise Server 11 SP3 for Teradata foomatic-filters as a component of SUSE Linux Enterprise Server 11 SP4 LTSS foomatic-rip filter v4.0.12 and prior used insecurely creates temporary files for storage of PostScript data by rendering the data when the debug mode was enabled. This flaw may be exploited by a local attacker to conduct symlink attacks by overwriting arbitrary files accessible with the privileges of the user running the foomatic-rip universal print filter. CVE-2011-2924 SUSE Linux Enterprise Server 11 SP1 for Teradata:foomatic-filters SUSE Linux Enterprise Server 11 SP3 for Teradata:foomatic-filters SUSE Linux Enterprise Server 11 SP4 LTSS:foomatic-filters moderate 3.3 AV:L/AC:M/Au:N/C:N/I:P/A:P 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N