pkg:Debian/sane-backends

All known vulnerabilities

• HIGH8.8CVE-2020-12861A heap buffer overflow in SANE Backends before 1.0.30 allows a malicious device connected to the same local network as the victim to execut…
  from 0, < 1.0.31-2
• HIGH8.0CVE-2020-12865A heap buffer overflow in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to exe…
  from 0, < 1.0.31-2
• HIGH7.5CVE-2017-6318sane-backends - security update
  from 0, < 1.0.22-7.4+deb7u1
• HIGH7.5sane-backends - security update
  from 0, < 1.0.25-4
• HIGH7.3An issue in Sane 1.2.1 allows a local attacker to execute arbitrary code via a crafted file to the sanei_configure_attach() function.
  from 0
• HIGH7.1Sane 1.2.1 heap bounds overwrite in init_options() from backend/test.c via a long init_mode string in a configuration file.
  from 0
• MEDIUM5.7A NULL pointer dereference in SANE Backends before 1.0.30 allows a malicious device connected to the same local network as the victim to ca…
  from 0, < 1.0.31-2
• MEDIUM5.5sane-backends - security update
  from 0, < 1.0.31-2
• MEDIUM5.5sane-backends - security update
  from 0, < 1.0.24-8+deb8u3
• MEDIUM4.3An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read…
  from 0, < 1.0.31-2
• MEDIUM4.3An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read…
  from 0, < 1.0.31-2
• MEDIUM4.3sane-backends - security update
  from 0, < 1.0.31-2
• MEDIUM4.3sane-backends - security update
  from 0, < 1.0.25-4.1+deb9u1
• —sane-backends - several vulnerabilities
  from 0, < 1.0.7-4
• —saned in sane-backends 1.0.7 and earlier calls malloc with an arbitrary size value if a connection is dropped before the size value has bee…
  from 0, < 1.0.11-1
• —sane-backends - several vulnerabilities
  from 0, < 1.0.11-1
• —saned in sane-backends 1.0.7 and earlier does not quickly handle connection drops, which allows remote attackers to cause a denial of servi…
  from 0, < 1.0.11-1
• —saned in sane-backends 1.0.7 and earlier, when debug messages are enabled, does not properly handle dropped connections, which can prevent…
  from 0, < 1.0.11-1
• —saned in sane-backends 1.0.7 and earlier, and possibly later versions, does not properly allocate memory in certain cases, which could allo…
  from 0, < 1.0.11-1
• —saned in sane-backends 1.0.7 and earlier does not properly "check the validity of the RPC numbers it gets before getting the parameters," w…
  from 0, < 1.0.11-1