Information on source package sane-backends

Available versions

ReleaseVersion
stretch1.0.25-4.1
stretch (security)1.0.25-4.1+deb9u2
buster1.0.27-3.2
bullseye1.0.31-3
sid1.0.31-3

Open issues

BugstretchbusterbullseyesidDescription
CVE-2020-12867fixedvulnerable (no DSA)vulnerablevulnerableA NULL pointer dereference in sanei_epson_net_read in SANE Backends be ...
CVE-2020-12866vulnerable (no DSA, ignored)vulnerable (no DSA)vulnerablevulnerableA NULL pointer dereference in SANE Backends before 1.0.30 allows a mal ...
CVE-2020-12865fixedvulnerable (no DSA)vulnerablevulnerableA heap buffer overflow in SANE Backends before 1.0.30 may allow a mali ...
CVE-2020-12864vulnerable (no DSA, ignored)vulnerable (no DSA)vulnerablevulnerableAn out-of-bounds read in SANE Backends before 1.0.30 may allow a malic ...
CVE-2020-12863fixedvulnerable (no DSA)vulnerablevulnerableAn out-of-bounds read in SANE Backends before 1.0.30 may allow a malic ...
CVE-2020-12862fixedvulnerable (no DSA)vulnerablevulnerableAn out-of-bounds read in SANE Backends before 1.0.30 may allow a malic ...
CVE-2020-12861vulnerable (no DSA, ignored)vulnerable (no DSA)vulnerablevulnerableA heap buffer overflow in SANE Backends before 1.0.30 allows a malicio ...

Resolved issues

BugDescription
CVE-2017-6318saned in sane-backends 1.0.25 allows remote attackers to obtain sensit ...
CVE-2003-0778saned in sane-backends 1.0.7 and earlier, and possibly later versions, ...
CVE-2003-0777saned in sane-backends 1.0.7 and earlier, when debug messages are enab ...
CVE-2003-0776saned in sane-backends 1.0.7 and earlier does not properly "check the ...
CVE-2003-0775saned in sane-backends 1.0.7 and earlier calls malloc with an arbitrar ...
CVE-2003-0774saned in sane-backends 1.0.7 and earlier does not quickly handle conne ...
CVE-2003-0773saned in sane-backends 1.0.7 and earlier does not check the IP address ...

Security announcements

DSA / DLADescription
DLA-2332-2sane-backends - regression update
DLA-2332-1sane-backends - security update
DLA-2231-1sane-backends - security update
DLA-940-1sane-backends - security update
DSA-379sane-backends - several vulnerabilities

Search for package or bug name: Reporting problems