sane-backends: Multiple vulnerabilities (CVE-2020-12862, CVE-2020-12863, CVE-2020-12865, CVE-2020-12867)
CVE-2020-12862: Out-of-bounds read in decode_binary
A flaw was found in sane-backends before version 1.0.30. An out-of-bounds read in decode_binary may lead to disclosure of information.
References:
Patch:
https://gitlab.com/sane-project/backends/-/commit/3d005c2570a71fe93a63192d9c47ee54cb39049b
CVE-2020-12863: Out-of-bounds read in esci2_check_header
A flaw was found in sane-backends before version 1.0.30. An out-of-bounds read in esci2_check_header function may lead to disclosure of information.
References:
Patch:
https://gitlab.com/sane-project/backends/-/commit/226d9c92899facf4b22b98c73be6ad2cd0effc4a
CVE-2020-12865: Heap buffer overflow in esci2_img
A flaw was found in sane-backends before version 1.0.30. A heap buffer overflow in esci2_img function may lead to remote code execution.
References:
- https://gitlab.com/sane-project/backends/-/issues/279
- https://nvd.nist.gov/vuln/detail/CVE-2020-12865
Patch:
https://gitlab.com/sane-project/backends/-/commit/b9b0173409df73e235da2aa0dae5edd21fb55967
CVE-2020-12867: NULL pointer dereference in sanei_epson_net_read function
A NULL pointer dereference in sanei_epson_net_read in SANE Backends through 1.0.29 allows a malicious device connected to the same local network as the victim to cause a denial of service, aka GHSL-2020-075.
References:
- https://gitlab.com/sane-project/backends/-/issues/279
- https://nvd.nist.gov/vuln/detail/CVE-2020-12867
Patch:
https://gitlab.com/sane-project/backends/-/commit/4c9e4efd4a82214719eeb1377a900e3a85c1c369
Affected branches:
-
master -
3.12-stable