Comment 20 for bug 1083416

This bug was fixed in the package cups-pk-helper - 0.1.2-1ubuntu0.1

---------------
cups-pk-helper (0.1.2-1ubuntu0.1) oneiric-security; urgency=low

  * SECURITY UPDATE: CUPS function calls were wrapped insecurely, which
    could be used to upload sensitive data to a CUPS resource, or overwrite
    specific files with the content of a CUPS resource. The user would have
    to explicitly approve the action. (LP: #1083416)
    - CVE-2012-4510
    - debian/patches/cups-pk-helper-CVE-2012-4510.patch: Copied from Fedora 16
 -- Jeremy Bicha <email address hidden> Mon, 26 Nov 2012 22:39:36 -0500