Re: Linux & BSD's lpr exploit

[deraadt () cvs openbsd org (Theo de Raadt)]

>  there is a bug in berkeley-derived lpr, which allows attacker to get
> root access (see freebsd-security for details). Here is exploit for Linux
> (tested on 2.0.20), for BSD (tested on FreeBSD 2.1) and a patch.

OpenBSD is not vulnerable.  This was found and fixed in mid-August.