AVG-1150 log

Package a2ps
Status Fixed
Severity High
Type multiple issues
Affected 4.14-8
Fixed 4.14-9
Current 4.15.6-1 [extra]
Ticket None
Created Wed May 6 17:29:25 2020
Issue Severity Remote Type Description
CVE-2015-8107 Medium No Arbitrary code execution
A format string vulnerability in GNU a2ps 4.14 allows remote attackers to execute arbitrary code.
CVE-2014-0466 High No Arbitrary command execution
The fixps script in a2ps 4.14 does not use the -dSAFER option when executing gs, which allows context-dependent attackers to delete arbitrary files or...
Date Advisory Package Type
06 May 2020 ASA-202005-4 a2ps multiple issues