Format: 1.8 Date: Fri, 21 Aug 2020 11:15:11 -0400 Source: sane-backends Binary: sane-utils libsane-common libsane libsane-dev libsane-dbg Architecture: armhf armhf_translations Version: 1.0.25+git20150528-1ubuntu2.16.04.3 Distribution: xenial Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: libsane - API library for scanners libsane-common - API library for scanners -- documentation and support files libsane-dbg - API development library for scanners [debug symbols] libsane-dev - API development library for scanners [development files] sane-utils - API library for scanners -- utilities Changes: sane-backends (1.0.25+git20150528-1ubuntu2.16.04.3) xenial-security; urgency=medium . * SECURITY UPDATE: memory disclosure via crafted SANE_NET_CONTROL_OPTION packet - debian/patches/CVE-2017-6318.patch: address memory corruption and information leakage in frontend/saned.c. - CVE-2017-6318 * SECURITY UPDATE: out-of-bounds read in epsonds - debian/patches/CVE-2020-12862.patch: do not read beyond the end of the token in backend/epsonds-cmd.c. - CVE-2020-12862 * SECURITY UPDATE: out-of-bounds read in epsonds - debian/patches/CVE-2020-12863.patch: read only up to seven hexdigits to determine payload size in backend/epsonds-cmd.c. - CVE-2020-12863 * SECURITY UPDATE: heap buffer overflow in epsonds - debian/patches/CVE-2020-12865.patch: check for overflow when reading image data in backend/epsonds-cmd.c, backend/epsonds.c, backend/epsonds.h. - CVE-2020-12865 * SECURITY UPDATE: NULL pointer dereference in epson2 - debian/patches/CVE-2020-12867.patch: rewrite network I/O in backend/epson2_net.c, backend/epson2_net.h. - CVE-2020-12867 Checksums-Sha1: 2e8af73d5bad69c74610d67dc03ec06abcfff0d0 6526186 libsane-dbg_1.0.25+git20150528-1ubuntu2.16.04.3_armhf.deb 88ce9d50d784dafa792f33fe56f3fdf82bd2a57a 1308 libsane-dbgsym_1.0.25+git20150528-1ubuntu2.16.04.3_armhf.ddeb 97959cd54d3fc84a32654668ba669d8e78e0d4e3 1210 libsane-dev-dbgsym_1.0.25+git20150528-1ubuntu2.16.04.3_armhf.ddeb 43a807239542db05b3cc451f5e4e4aae252ca2ed 2146674 libsane-dev_1.0.25+git20150528-1ubuntu2.16.04.3_armhf.deb 1d0fb2ac5b49af3f41c1f908314be57f4d15c366 1842956 libsane_1.0.25+git20150528-1ubuntu2.16.04.3_armhf.deb b4ddf1713134619d447074b85855b314567d4a14 576643 sane-backends_1.0.25+git20150528-1ubuntu2.16.04.3_armhf_translations.tar.gz 144edf361a13f2e9942e22ee3988fd8d845bd5c2 1256 sane-utils-dbgsym_1.0.25+git20150528-1ubuntu2.16.04.3_armhf.ddeb 8bfdf03e4fedbbfa31e1cb7456244a6a2200ad4a 180966 sane-utils_1.0.25+git20150528-1ubuntu2.16.04.3_armhf.deb Checksums-Sha256: 6c2579217480d121abdb7ed482855e8eba43c4f5523623477b2b3f1589fac225 6526186 libsane-dbg_1.0.25+git20150528-1ubuntu2.16.04.3_armhf.deb 8a2a72ddc10067193de14e36aa6330fd7273d9d5825b718c4aeeabfc0729c233 1308 libsane-dbgsym_1.0.25+git20150528-1ubuntu2.16.04.3_armhf.ddeb 7709632cb4379307980720d82045357d1346df2d80563fbc859a86d176078439 1210 libsane-dev-dbgsym_1.0.25+git20150528-1ubuntu2.16.04.3_armhf.ddeb 9fa92fe2aead206ddf7980d49211d6b14c4d10185e9a103ec6cb7ee6a836444f 2146674 libsane-dev_1.0.25+git20150528-1ubuntu2.16.04.3_armhf.deb ba3b521a8cc9fc2b6a48b792d0db339246a38c158446cb478b931cda9fbfa449 1842956 libsane_1.0.25+git20150528-1ubuntu2.16.04.3_armhf.deb ded4b65765299cdcf101f7349762f7c4e4d6dd5b9fd331abeb953568cfa9490f 576643 sane-backends_1.0.25+git20150528-1ubuntu2.16.04.3_armhf_translations.tar.gz 4c4087101a4fea51cbe0ee90c7f03a6a3636f64c60422ed02a4fc4f42d3ade6d 1256 sane-utils-dbgsym_1.0.25+git20150528-1ubuntu2.16.04.3_armhf.ddeb 0b75a7037be030507264c5fbaa4fe88da88d8b602876e84876fbb8f2e6819d0e 180966 sane-utils_1.0.25+git20150528-1ubuntu2.16.04.3_armhf.deb Files: 226cf714e6fff3b0ac00961370f9c5d1 6526186 debug extra libsane-dbg_1.0.25+git20150528-1ubuntu2.16.04.3_armhf.deb 5172bbab400db4b64b12010793da350d 1308 libs extra libsane-dbgsym_1.0.25+git20150528-1ubuntu2.16.04.3_armhf.ddeb b9a61180ba068716a641feeb03163be2 1210 libdevel extra libsane-dev-dbgsym_1.0.25+git20150528-1ubuntu2.16.04.3_armhf.ddeb c646d7c0d6153d793bf2a97e05dec3b4 2146674 libdevel optional libsane-dev_1.0.25+git20150528-1ubuntu2.16.04.3_armhf.deb ebb03e63a2c17e57d1f898a4628e6d27 1842956 libs optional libsane_1.0.25+git20150528-1ubuntu2.16.04.3_armhf.deb d04d2a487593f5e1a41878e003250b76 576643 raw-translations - sane-backends_1.0.25+git20150528-1ubuntu2.16.04.3_armhf_translations.tar.gz 8fcd94f7556da6cd29129a4e24095c5c 1256 graphics extra sane-utils-dbgsym_1.0.25+git20150528-1ubuntu2.16.04.3_armhf.ddeb 9d0d76455237726c815759c63d258e20 180966 graphics optional sane-utils_1.0.25+git20150528-1ubuntu2.16.04.3_armhf.deb Original-Maintainer: Jörg Frings-Fürst