Format: 1.8 Date: Fri, 21 Aug 2020 10:48:50 -0400 Source: sane-backends Binary: libsane libsane-dev libsane1 sane-utils Architecture: i386 i386_translations Version: 1.0.29-0ubuntu5.1 Distribution: focal Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: libsane - API library for scanners libsane-dev - API development library for scanners [development files] libsane1 - API library for scanners [transitional package] sane-utils - API library for scanners -- utilities Changes: sane-backends (1.0.29-0ubuntu5.1) focal-security; urgency=medium . * SECURITY UPDATE: multiple issues in epsonds network discovery - debian/patches/CVE-2020-12861_12864_12866.patch: disable network autodiscovery in backend/epsonds.conf.in. - CVE-2020-12861 - CVE-2020-12864 - CVE-2020-12866 * SECURITY UPDATE: out-of-bounds read in epsonds - debian/patches/CVE-2020-12862.patch: do not read beyond the end of the token in backend/epsonds-cmd.c. - CVE-2020-12862 * SECURITY UPDATE: out-of-bounds read in epsonds - debian/patches/CVE-2020-12863.patch: read only up to seven hexdigits to determine payload size in backend/epsonds-cmd.c. - CVE-2020-12863 * SECURITY UPDATE: heap buffer overflow in epsonds - debian/patches/CVE-2020-12865.patch: check for overflow when reading image data in backend/epsonds-cmd.c, backend/epsonds.c, backend/epsonds.h. - CVE-2020-12865 * SECURITY UPDATE: NULL pointer dereference in epson2 - debian/patches/CVE-2020-12867.patch: rewrite network I/O in backend/epson2_net.c, backend/epson2_net.h. - CVE-2020-12867 Checksums-Sha1: 6d7126ada78ca2068605710a5d1b6554e2e735ed 14530764 libsane-dbgsym_1.0.29-0ubuntu5.1_i386.ddeb e6c25e0c0a7d89c0daf9ae18109e0f068593da3c 2473728 libsane-dev_1.0.29-0ubuntu5.1_i386.deb 2d7f913e932549742def06b3360544c481e0bb30 14220 libsane1_1.0.29-0ubuntu5.1_i386.deb f6c6cf3a123ec8c84f368b88c6234d14c56ed5d1 2496176 libsane_1.0.29-0ubuntu5.1_i386.deb a69e6ef1b176646472b534d0f82c384d0e5d26cc 10598 sane-backends_1.0.29-0ubuntu5.1_i386.buildinfo 98e3175f26984623e616586d441d9ee0eb936ac1 855337 sane-backends_1.0.29-0ubuntu5.1_i386_translations.tar.gz 2b5069f3e5613282d0fd6060a7de926c0470154b 331824 sane-utils-dbgsym_1.0.29-0ubuntu5.1_i386.ddeb 3864b426ba171a5b6a315d8d7bc2ca5b1fdcc600 203076 sane-utils_1.0.29-0ubuntu5.1_i386.deb Checksums-Sha256: ca878d89f9c151a89683dbc6149bfcc793a3e6d1aba873df4220c3206cba731c 14530764 libsane-dbgsym_1.0.29-0ubuntu5.1_i386.ddeb 0f8786c36b23e22a57e0fdc6a795166ef8d06cc8f8eced049433653c30960164 2473728 libsane-dev_1.0.29-0ubuntu5.1_i386.deb 31b831746efa3597dc8af334f008136ed63b3a5538d40fee19c0af83cc6e29df 14220 libsane1_1.0.29-0ubuntu5.1_i386.deb 522978c440c8479db29ffd07edc71dd158654afbff3ded9126f3acf104fe5e19 2496176 libsane_1.0.29-0ubuntu5.1_i386.deb 64e0105183706627495b7658b9c9b8c5637c4a6c29199adfaabd6b70e2b92994 10598 sane-backends_1.0.29-0ubuntu5.1_i386.buildinfo 6ddf4d58783eae155910e0f2134de8f9bf06fd2ae85678d9cecc28182f4f8df1 855337 sane-backends_1.0.29-0ubuntu5.1_i386_translations.tar.gz 1cafa3b155ea7b42462cb2718b645250265937f1c183d2af7e3d238f1293cfb0 331824 sane-utils-dbgsym_1.0.29-0ubuntu5.1_i386.ddeb 531325bfb3826748d665029bc15544a51db337e4edf931ad2bd2517479abd7df 203076 sane-utils_1.0.29-0ubuntu5.1_i386.deb Files: ca1ab8d76f779e8d9cbf6c4888f41278 14530764 debug optional libsane-dbgsym_1.0.29-0ubuntu5.1_i386.ddeb 81ef3bf8b578ea2576be75283988d2f3 2473728 libdevel optional libsane-dev_1.0.29-0ubuntu5.1_i386.deb 9a63125a118918c8586c1ea2491cac5c 14220 oldlibs optional libsane1_1.0.29-0ubuntu5.1_i386.deb c8e8eb3f87d17e3911132a41aae03389 2496176 libs optional libsane_1.0.29-0ubuntu5.1_i386.deb 42de073fbd60f2e5568bb9b4bd368c46 10598 graphics optional sane-backends_1.0.29-0ubuntu5.1_i386.buildinfo 3407fdeb28ba70ff618481ce72338259 855337 raw-translations - sane-backends_1.0.29-0ubuntu5.1_i386_translations.tar.gz d84b0cf0dff8bf4613370a9ce1dbab9d 331824 debug optional sane-utils-dbgsym_1.0.29-0ubuntu5.1_i386.ddeb 123c5f00d148b24b10f3f6f762775a8b 203076 graphics optional sane-utils_1.0.29-0ubuntu5.1_i386.deb Original-Maintainer: Jörg Frings-Fürst