{
  "threat_severity" : "Low",
  "public_date" : "2012-11-27T00:00:00Z",
  "bugzilla" : {
    "description" : "hplip: default permissions for /var/log/hp are too open",
    "id" : "894283",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=894283"
  },
  "cvss" : {
    "cvss_base_score" : "1.9",
    "cvss_scoring_vector" : "AV:L/AC:M/Au:N/C:N/I:P/A:N",
    "status" : "draft"
  },
  "details" : [ "HP Linux Imaging and Printing (HPLIP) before 3.13.2 uses world-writable permissions for /var/log/hp and /var/log/hp/tmp, which allows local users to delete log files via standard filesystem operations." ],
  "statement" : "Not Vulnerable. This issue does not affect the version of hplip and hplip3 as shipped with Red Hat Enterprise Linux 5. This issue does not affect the version of hplip as shipped with Red Hat Enterprise Linux 6.",
  "package_state" : [ {
    "product_name" : "Red Hat Enterprise Linux 5",
    "fix_state" : "Not affected",
    "package_name" : "hplip",
    "cpe" : "cpe:/o:redhat:enterprise_linux:5"
  }, {
    "product_name" : "Red Hat Enterprise Linux 5",
    "fix_state" : "Not affected",
    "package_name" : "hplip3",
    "cpe" : "cpe:/o:redhat:enterprise_linux:5"
  }, {
    "product_name" : "Red Hat Enterprise Linux 6",
    "fix_state" : "Not affected",
    "package_name" : "hplip",
    "cpe" : "cpe:/o:redhat:enterprise_linux:6"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2012-6108\nhttps://nvd.nist.gov/vuln/detail/CVE-2012-6108\nhttps://bugs.launchpad.net/hplip/+bug/1016507/comments/1" ],
  "name" : "CVE-2012-6108",
  "csaw" : false
}