Описание
An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the program, aka GHSL-2020-082.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 1.0.27-1~experimental3ubuntu2.3 |
| devel | not-affected | 1.0.30-1~experimental2ubuntu1 |
| eoan | ignored | end of life |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | released | 1.0.27-1~experimental3ubuntu2.3 |
| esm-infra/focal | released | 1.0.29-0ubuntu5.1 |
| esm-infra/xenial | released | 1.0.25+git20150528-1ubuntu2.16.04.3 |
| focal | released | 1.0.29-0ubuntu5.1 |
| precise/esm | DNE | |
| trusty | ignored | end of standard support |
Показывать по
3.3 Low
CVSS2
4.3 Medium
CVSS3
Связанные уязвимости
An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the program, aka GHSL-2020-082.
An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the program, aka GHSL-2020-082.
An out-of-bounds read in SANE Backends before 1.0.30 may allow a malic ...
An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the program, aka GHSL-2020-082.
Уязвимость интерфейса, который предоставляет доступ к устройствам сканирования растровых изображений SANE, связанная с чтением за допустимыми границами буфера данных, позволяющая нарушителю получить доступ к конфиденциальным данным
3.3 Low
CVSS2
4.3 Medium
CVSS3