Описание
Security update for sane-backends
This update for sane-backends fixes the following issues:
- saned could have leaked uninitialized memory back to its requesters for some opcodes, allowing for information disclosure of saned memory (CVE-2017-6318, bsc#1027197).
Список пакетов
openSUSE Leap 42.1
sane-backends-1.0.24-5.1
sane-backends-32bit-1.0.24-5.1
sane-backends-autoconfig-1.0.24-5.1
sane-backends-devel-1.0.24-5.1
Ссылки
- E-Mail link for openSUSE-SU-2017:0649-1
- SUSE Security Ratings
Описание
saned in sane-backends 1.0.25 allows remote attackers to obtain sensitive memory information via a crafted SANE_NET_CONTROL_OPTION packet.
Затронутые продукты
openSUSE Leap 42.1:sane-backends-1.0.24-5.1
openSUSE Leap 42.1:sane-backends-32bit-1.0.24-5.1
openSUSE Leap 42.1:sane-backends-autoconfig-1.0.24-5.1
openSUSE Leap 42.1:sane-backends-devel-1.0.24-5.1
Ссылки
- CVE-2017-6318
- SUSE Bug 1027197