Search HP Support Center

Security bulletin archive

This archive of security bulletins is partitioned into software product categories.

The HP-UX Security Patch Matrix contains an index of bulletins with up-to-date patch IDs.

3rd Party Software Security Bulletins(3P)

Date (rev) Document ID Rev # Title
May 09, 2011 HPSBMI02632 rev.1 HPSBMI02632 SSRT100379 rev.1 - HP/Palm webOS, Execution of Arbitrary Code, Denial of Service (DoS), Unauthorized File System Write Access
Dec 06, 2010 HPSBMI02614 rev.1 HPSBMI02614 SSRT100344 rev.1 - HP webOS Contacts Application, Remote Execution of Arbitrary Code
Oct 26, 2010 HPSBMI02582 rev.1 HPSBMI02582 SSRT100269 rev.1 - Palm webOS Camera Application, Unauthorized Write Access
Oct 26, 2010 HPSBMI02580 rev.1 HPSBMI02580 SSRT100254 rev.1 - Palm webOS, Code execution vulnerability in Palm webOS service API
Oct 26, 2010 HPSBMI02573 rev.1 HPSBMI02573 SSRT100227 rev.1 - Palm webOS, webOS Doc Viewer, Execution of Arbitrary Code
Apr 26, 2007 HPSBMI00004 rev.2 HPSBMI00004 SSRT3515 rev.2 - HP Jetdirect Running ftp, Advisory
Apr 26, 2007 HPSBMI00002 rev.2 HPSBMI00002 SSRT3512 rev.2 - HP Jetdirect, Remote Unauthorized Access, Denial of Service (DoS)

Return to top

HP General SW Security Bulletins(GN)

Date (rev) Document ID Rev # Title
Mar 21, 2016 HPSBGN3547 rev.1 HPSBGN3547 rev.1 - HP Device Manager, Remote Read Access to Arbitrary Files
Mar 04, 2016 HPSBGN03438 rev.1 HPSBGN03438 rev.1 - HP Support Assistant, Local Authentication Bypass
May 17, 2010 HPSBGN02511 rev.3 HPSBGN02511 SSRT100022 rev.3 - Certain HP Small Form Factor, Microtower and Workstations PC's with Broadcom Integrated NIC Firmware, Remote Execution of Arbitrary Code
Mar 27, 2008 HPSBGN02319 rev.1 HPSBGN02319 SSRT080027 rev.1 - HP Compaq Notebook PC BIOS, Local Unauthorized Access
Mar 27, 2008 HPSBGN02305 rev.1 HPSBGN02305 SSRT080004 rev.1 - HP Compaq Business Notebook PC BIOS, Local Denial of Service (DoS)
Feb 22, 2008 HPSBGN02298 rev.3 HPSBGN02298 SSRT071502 rev.3 - HP Notebook PC Quick Launch Button (QLB) Software Running on Windows, Remote Execution of Arbitrary Code, Gain Privileged Access
Apr 26, 2007 HPSBGN01150 rev.2 HPSBGN01150 SSRT2382 rev.2 - Proactive Remote Service (PRS), Remote Disclosure of Privileged Information

Return to top

HP Hardware and Firmware Security Bulletins(HF)

Date (rev) Document ID Rev # Title
Aug 25, 2016 HPSBHF3549 rev.0 HPSBHF3549 ThinkPwn UEFI BIOS SmmRuntime Escalation of Privilege
Jun 01, 2016 HPSBHF3548 rev.0 HPSBHF3548 - Linux Kernel Flaw, ASN.1 DER decoder for x509 certificate DER files
Apr 21, 2016 HPSBHF03545 rev. 1 HPSBHF03545 rev. 1 - HP EliteBook and Zbook Products with Windows NVidia Graphics Driver, Multiple Local Vulnerabilities
Feb 26, 2016 HPSBHF03436 rev.1 HPSBHF03436 rev.1 - HP Thin Client with ThinPro OS, running Linux, Local Elevated Privileges
Feb 26, 2016 HPSBHF03439 rev.1 HPSBHF03439 rev.1 - HP Commercial PCs with Sure Start, Local Denial of Service
Sep 25, 2015 HPSBHF03513 rev.1 HPSBHF03513 rev.1 - HP PCs and Workstations running Windows and Linux with NVidia Graphics Driver, Local Denial of Service (DoS), Elevation of Privilege
Sep 14, 2015 HPSBHF03509 rev.1 HPSBHF03509 rev.1 - HP ThinPro and Smart Zero Core, Remote Denial of Service, Unauthorized Access to Data
Sep 10, 2015 HPSBHF03408 rev.2 HPSBHF03408 rev.2 - HP PCs with HP lt4112 LTE/HSPA+ Gobi 4G Module, Remote Execution of Arbitrary Code
Jul 30, 2015 HPSBHF03374 rev.1 HPSBHF03374 rev.1 - HP PCs with UEFI Firmware, Denial of Service
May 27, 2015 HPSBHF03340 rev.1 HPSBHF03340 rev.1 - HP ThinPro Linux and HP Smart Zero Core running HP Easy Setup Wizard, Local Unauthorized Access, Elevation of Privilege
Apr 13, 2015 HPSBHF03310 rev.2 HPSBHF03310 rev.2 - HP Thin Clients running Windows Embedded Standard 7 (WES7) or Windows Embedded Standard 2009 (WES09) with HP Easy Deploy, Remote Elevation of Privilege, Execution of Code
Mar 30, 2015 HPSBHF03271 rev.1 HPSBHF03271 rev.1 - HP PCs and Workstations Running Windows 7 with NVidia Graphics Driver, Elevation of Privileges
Mar 20, 2015 HPSBHF03289 rev.1- HPSBHF03289 rev.1- HP ThinClient PCs running ThinPro Linux, Remote Code Execution, Denial of Service, Disclosure of information
Mar 20, 2015 HPSBHF03279 rev.2 HPSBHF03279 rev.2 - HP Point of Sale PCs Running Windows with OPOS Drivers, Remote Execution of Code
Feb 06, 2015 HPSBHF03084 rev.3 HPSBHF03084 rev.3 - HP PCs with UEFI Firmware, Execution of Arbitrary Code
Nov 06, 2014 HPSBHF03124 rev.2 HPSBHF03124 rev.2 - HP Thin Clients running Bash Shell, Remote Execution of Code
Oct 01, 2014 HPSBHF03119 rev.2 HPSBHF03119 rev.2 - HP DreamColor Professional Display running Bash Shell, Remote Code Execution
Apr 24, 2014 HPSBHF03021 rev.1 HPSBHF03021 rev.1 - HP Thin Client with ThinPro OS or Smart Zero Core Services, Running OpenSSL, Remote Disclosure of Information
Jun 24, 2013 HPSBHF02878 rev.1 HPSBHF02878 rev.1 - HP Smart Zero Client, Unauthorized Access
Apr 23, 2013 HPSBHF02865 rev.1 HPSBHF02865 SSRT101158 rev.1 - HP ElitePad 900, Secure Boot Configuration Inconsistency

Return to top

HP Printing & Imaging Security Bulletins(PI)

Date (rev) Document ID Rev # Title
Mar 07, 2016 HPSBPI03546 rev.2 HPSBPI03546 rev.2 - HP LaserJet Printers and MFPs, HP OfficeJet Enterprise Printers, Remote Disclosure of Information
Jun 26, 2015 HPSBPI03360 rev.2 HPSBPI03360 rev.2 - HP LaserJet Printers and MFPs, HP OfficeJet Printers and MFPs, and HP JetDirect Networking cards using OpenSSL, Remote Disclosure of Information
May 18, 2015 HPSBPI03322 rev.1 HPSBPI03322 rev.1 - HP Access Control Software, Local Unauthorized Access
Apr 24, 2015 HPSBPI03315 rev.1 HPSBPI03315 rev.1 - HP Capture and Route Software, Remote Information Disclosure
Mar 05, 2015 HPSBPI03107 rev.2 HPSBPI03107 rev.2 - Certain HP LaserJet Printers, MFPs and Certain HP OfficeJet Enterprise Printers using OpenSSL, Remote Unauthorized Access
Oct 30, 2014 HPSBPI03147 rev.1 HPSBPI03147 rev.1 - Certain HP Color LaserJet Printers, Remote Unauthorized Access, Denial of Service (DoS)
May 12, 2014 HPSBPI03031 rev.2 HPSBPI03031 rev.2 - HP Officejet Pro X Printers, Certain Officejet Pro Printers, Remote Disclosure of Information
Apr 24, 2014 HPSBPI03014 rev.1 HPSBPI03014 rev.1 - HP LaserJet Pro MFP Printers, HP Color LaserJet Pro MFP Printers, Remote Disclosure of Information
Feb 20, 2014 HPSBPI02869 rev.3 HPSBPI02869 SSRT100936 rev.3 - HP LaserJet MFP Printers, HP Color LaserJet MFP Printers, Certain HP LaserJet Printers, Remote Unauthorized Access to Files
Dec 17, 2013 HPSBPI02938 rev.2 HPSBPI02938 rev.2 - Certain HP LaserJet Printers, Remote Denial of Service (DoS)
Dec 10, 2013 HPSBPI02945 rev.1 HPSBPI02945 rev.1 - HP Officejet Pro 8500 (A909) All-in-One Printer, Cross-Site Scripting (XSS)
Oct 03, 2013 HPSBPI02892 rev.1 HPSBPI02892 rev.1 - Certain HP FutureSmart MFP, Weak PDF Encryption, Local Disclosure of Information
Jul 31, 2013 HPSBPI02887 rev.2 HPSBPI02887 rev.2 - Certain HP LaserJet Pro Printers, Remote Information Disclosure
Apr 25, 2013 HPSBPI02868 rev.1 HPSBPI02868 SSRT101017 rev.1 - HP Managed Printing Administration (MPA), Remote Cross Site Scripting (XSS)
Mar 06, 2013 HPSBPI02851 rev.1 HPSBPI02851 SSRT101078 rev.1 - Certain HP LaserJet Pro Printers, Unauthorized Access to Data
Dec 03, 2012 HPSBPI02807 rev.1 HPSBPI02807 SSRT100928 rev.1 - HP LaserJet Pro 400 Multi Function Printers, Remote Unauthorized Access
Dec 03, 2012 HPSBPI02828 rev.1 HPSBPI02828 SSRT100778 rev.1 - HP LaserJet and Color LaserJet, Cross-Site Scripting (XSS)
Jun 27, 2012 HPSBPI02794 rev.1 HPSBPI02794 SSRT100542 rev.1 - Certain HP Photosmart Printers, Remote Denial of Service (DoS)
May 31, 2012 HPSBPI02779 rev.1 HPSBPI02779 SSRT100855 rev.1 - HP Web Jetadmin v8.x Running on Windows, Remote Cross Site Scripting (XSS)
Apr 26, 2012 HPSBPI02728 rev.6 HPSBPI02728 SSRT100692 rev.6 - Certain HP Printers and HP Digital Senders, Remote Firmware Update Enabled by Default
Jan 11, 2012 HPSBPI02698 rev.2 HPSBPI02698 SSRT100404 rev.2 - HP Easy Printer Care Software Running on Windows, Remote Execution of Arbitrary Code
Jan 09, 2012 HPSBPI02733 rev.1 HPSBPI02733 SSRT100646 rev.1 - Certain HP LaserJet Printers, Remote Unauthorized Access to Files
Dec 21, 2011 HPSBPI02732 rev.1 HPSBPI02732 SSRT100435 rev.1 - HP Managed Printing Administration, Remote Execution of Arbitrary Code and Other Vulnerabilities
Oct 19, 2011 HPSBPI02711 rev.1 HPSBPI02711 SSRT100647 rev.1 - HP MFP Digital Sending Software Running on Windows, Local Information Disclosure
Jun 20, 2011 HPSBPI02472 rev.3 HPSBPI02472 SSRT090196 rev.3 - Certain HP Color LaserJet Printers, Remote Unauthorized Access to Data, Denial of Service
Apr 11, 2011 HPSBPI02656 rev.1 HPSBPI02656 SSRT090262 rev.1 - Certain HP Photosmart Printers, Remote Unauthorized Access, Cross Site Scripting (XSS)
Mar 02, 2011 HPSBPI02640 rev.1 HPSBPI02640 SSRT100410 rev.1 - HP MFP Digital Sending Software Running on Windows, Authentication Bypass
Feb 22, 2011 HPSBPI02635 rev.1 HPSBPI02635 SSRT100391 rev.1 - HP Web Jetadmin Running on Windows, Local Unauthorized Access to Managed Resources
Nov 15, 2010 HPSBPI02575 rev.1 HPSBPI02575 SSRT090255 rev.1 - HP LaserJet MFP Printers, HP Color LaserJet MFP Printers, Certain HP LaserJet Printers, Remote Unauthorized Access to Files
Oct 13, 2010 HPSBPI02398 rev.6 HPSBPI02398 SSRT080166 rev.6 - Certain HP LaserJet Printers, HP Color LaserJet Printers, and HP Digital Senders, Remote Unauthorized Access to Files
Jun 11, 2010 HPSBPI02532 rev.2 HPSBPI02532 SSRT100111 rev.2 - HP MFP Digital Sending Software Running on Windows, Local Unauthorized Access
Feb 11, 2010 HPSBPI02507 rev.2 HPSBPI02507 SSRT100012 rev.2 - HP DreamScreen, Remote Disclosure of Information
Jan 13, 2010 HPSBPI02500 rev.1 HPSBPI02500 SSRT090263 rev.1 - HP Web Jetadmin, Remote Unauthorized Access to Data, Denial of Service (DoS)
Oct 07, 2009 HPSBPI02463 rev.1 HPSBPI02463 SSRT090061 rev.1 - HP LaserJet Printers, HP Color LaserJet Printers, Remote Cross Site Scripting (XSS)
Oct 02, 2007 HPSBPI02265 rev.1 HPSBPI02265 SSRT3515 rev.1 - Re-release of HPSBMI00004 HP Jetdirect Running ftp, Advisory
Oct 02, 2007 HPSBPI02263 rev.1 HPSBPI02263 SSRT3512 rev.1 - Re-release of HPSBMI0002 HP Jetdirect, Remote Unauthorized Access, Denial of Service (DoS)
Aug 08, 2007 HPSBPI02078 rev.2 HPSBPI02078 SSRT5979 rev.2 - HP Jetdirect 635n IPv6/IPsec Print Server (J7961A), Remote Denial of Service (DoS)
Jul 02, 2007 HPSBPI02228 rev.1 HPSBPI02228 SSRT071404 rev.1 - HP Instant Support - Driver Check Running on Windows XP, Remote Unauthorized Access
Jun 18, 2007 HPSBPI02226 rev.1 HPSBPI02226 SSRT061274 rev.1 - HP Help and Support Center Running on HP Notebook Computers Running with Windows XP, Remote Unauthorized Access
May 03, 2007 HPSBPI01078 rev.2 HPSBPI01078 SSRT4739 rev.2 - HP Web Jetadmin, Remote Execution of Arbitrary Commands
May 03, 2007 HPSBPI01026 rev.2 HPSBPI01026 SSRT2397 rev.2 - HP Web Jetadmin, Remote Unauthorized Access, Denial of Service (DoS)
May 03, 2007 HPSBPI01007 rev.2 HPSBPI01007 SSRT4700 rev.2 - HP Web Jetadmin, Remote Unauthorized Access to Files, Denial of Service (DoS)
May 03, 2007 HPSBPI01085 rev.2 HPSBPI01085 SSRT4840 rev.2 - HP LaserJet, Remote Denial of Service (DoS)
Apr 25, 2007 HPSBPI02185 rev.2 HPSBPI02185 SSRT071290 rev.2 - HP Jetdirect Running ftp, Remote Denial of Service (DoS)
Apr 02, 2006 HPSBPI2109 rev.1 HPSBPI2109 SSRT061141 rev.1 - HP Color LaserJet 2500 and 4600 Toolbox Running on Microsoft Windows Remote Unauthorized Disclosure of Information

Return to top

HP Storage SW Security Bulletins(ST)

Date (rev) Document ID Rev # Title
May 09, 2014 HPSBST03038 rev.1 HPSBST03038 rev.1 - HP H-series Fibre Channel Switches, Remote Disclosure of Information

Return to top