Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2020-12865

Опубликовано: 17 мая 2020
Источник: redhat
CVSS3: 8
EPSS Низкий

Описание

A heap buffer overflow in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to execute arbitrary code, aka GHSL-2020-084.

A flaw was found in sane-backends in versions prior to 1.0.30. A heap buffer overflow in the esci2_img function could lead to a remote code execution. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

Отчет

The vulnerable code is a part of "driver for Epson ESC/I-2 scanners" which was first introduced in sane-backends-1.0.25 (via https://gitlab.com/sane-project/backends/-/commit/d72f4663c0ad6e6f779c15c8baf5f92b675ae19a). Therefore, only versions of sane-backends shipped with Red Hat Enterprise Linux 8 are affected by this flaw.

Меры по смягчению последствий

This flaw can be mitigated by limiting network scanner discovery to a trusted subnet via the "net" configuration in the "/etc/sane.d/epsonds.conf" configuration file. Also, automatic network scanner discovery can be turned off by commenting out the line "net autodiscovery" in the same configuration file.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5sane-backendsNot affected
Red Hat Enterprise Linux 6sane-backendsNot affected
Red Hat Enterprise Linux 7sane-backendsNot affected
Red Hat Enterprise Linux 8sane-backendsFixedRHSA-2020:290214.07.2020
Red Hat Enterprise Linux 8.0 Update Services for SAP Solutionssane-backendsFixedRHSA-2020:304521.07.2020
Red Hat Enterprise Linux 8.1 Extended Update Supportsane-backendsFixedRHSA-2020:296716.07.2020

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important
Дефект:
CWE-190
https://bugzilla.redhat.com/show_bug.cgi?id=1850598sane-backends: Heap buffer overflow in esci2_img

EPSS

Процентиль: 64%
0.00484
Низкий

8 High

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2020-12865

CVSS3: 8
ubuntu
около 5 лет назад

A heap buffer overflow in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to execute arbitrary code, aka GHSL-2020-084.

nvd логотип

CVE-2020-12865

CVSS3: 8
nvd
около 5 лет назад

A heap buffer overflow in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to execute arbitrary code, aka GHSL-2020-084.

debian логотип

CVE-2020-12865

CVSS3: 8
debian
около 5 лет назад

A heap buffer overflow in SANE Backends before 1.0.30 may allow a mali ...

github логотип

GHSA-xw72-4xqx-6qww

CVSS3: 8
github
больше 3 лет назад

A heap buffer overflow in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to execute arbitrary code, aka GHSL-2020-084.

fstec логотип

BDU:2020-02932

CVSS3: 7.3
fstec
больше 5 лет назад

Уязвимость компонента epsonds пакета sane-backends, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании

EPSS

Процентиль: 64%
0.00484
Низкий

8 High

CVSS3