Univention Bugzilla – Bug 46244
sane-backends: Multiple issues (4.2)
Last modified: 2018-05-08 14:57:02 CEST
New Debian sane-backends 1.0.24-8+deb8u2 fixes: This update addresses the following issue: * CVE-2017-6318: fix memory corruption and information leakage. CVE-2017-6318 sane-backends: SANE_NET_CONTROL_OPTION response packet may contain memory contents of the server
aa2f998e55 Bug #46244: sane-backends_1.0.24-8+deb8u2
--- mirror/ftp/4.2/unmaintained/4.2-0/source/sane-backends_1.0.24-8+deb8u1.dsc +++ apt/ucs_4.2-0-errata4.2-3/source/sane-backends_1.0.24-8+deb8u2.dsc @@ -1,3 +1,10 @@ +1.0.24-8+deb8u2 [Wed, 19 Apr 2017 11:51:22 +0200] Jörg Frings-Fürst <debian@jff-webhosting.net>: + + * CVE-2017-6318: + - New debian/patches/0500-CVE-2017-6318.patch + + cherry-picked from upstream to fix memory corruption and + information leakage (Closes: #854804). + 1.0.24-8+deb8u1 [Wed, 27 Jan 2016 07:48:32 +0100] Jörg Frings-Fürst <debian@jff-webhosting.net>: * Cherry-picked systemd handling from unstable (Closes: #791961):
* No UCS specific patches * Comparison to previously shipped version ok * Binary package update Ok * Advisory Ok
<http://errata.software-univention.de/ucs/4.2/398.html>