FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Sane -- Multiple Vulnerabilities

Affected packages
sane-backends < 1.0.30

Details

VuXML ID 28481349-7e20-4f80-ae1e-e6bf48d4f17c
Discovery 2020-05-17
Entry 2020-05-28

The Sane Project reports:

epson2: fixes CVE-2020-12867 (GHSL-2020-075) and several memory management issues found while addressing that CVE

epsonds: addresses out-of-bound memory access issues to fix CVE-2020-12862 (GHSL-2020-082) and CVE-2020-12863 (GHSL-2020-083), addresses a buffer overflow fixing CVE-2020-12865 (GHSL-2020-084) and disables network autodiscovery to mitigate CVE-2020-12866 (GHSL-2020-079), CVE-2020-12861 (GHSL-2020-080) and CVE-2020-12864 (GHSL-2020-081). Note that this backend does not support network scanners to begin with.

magicolor: fixes a floating point exception and uninitialized data read

fixes an overflow in sanei_tcp_read()

[source]

References

CVE Name CVE-2020-12861
CVE Name CVE-2020-12862
CVE Name CVE-2020-12863
CVE Name CVE-2020-12864
CVE Name CVE-2020-12865
CVE Name CVE-2020-12866
CVE Name CVE-2020-12867
URL https://gitlab.com/sane-project/backends/-/releases/1.0.30

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.