Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 622422 (CVE-2017-6318)

Summary: <media-gfx/sane-backends-1.0.27: SANE_NET_CONTROL_OPTION response packet may contain memory contents of the server (CVE-2017-6318)
Product: Gentoo Security Reporter: Volkan <vBugZilla>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED FIXED    
Severity: minor CC: graphics+disabled, printing, sudormrfhalt
Priority: Normal Flags: stable-bot: sanity-check+
Version: unspecified   
Hardware: All   
OS: Linux   
URL: https://bugzilla.redhat.com/show_bug.cgi?id=1428883
Whiteboard: B3 [noglsa cve]
Package list:
media-gfx/sane-backends-1.0.27
 Runtime testing required: ---

Description Volkan 2017-06-21 21:48:03 UTC 
When saned receives a SANE_NET_CONTROL_OPTION with value_type == SANE_TYPE_STRING and value_size larger than the actual length of the requested string, the response packet from the server contains a string object as long as value_size in the request. The bytes following the actual string appear to contain memory contents of the server.

Upstream bug:

https://alioth.debian.org/tracker/index.php?func=detail&aid=315576&group_id=30186&atid=410366

Upstream patch:

https://anonscm.debian.org/git/sane/sane-backends.git/commit/?id=42896939822b44f44ecd1b6
Comment 1 Kristian Fiskerstrand (RETIRED) gentoo-dev 2017-06-21 22:02:52 UTC 
Maintainer needed package with reverse dependencies, any of those needing this dep that can take maintainership of the package?
Comment 2 Pacho Ramos gentoo-dev 2017-09-27 10:56:36 UTC 
1.0.27 in the tree fixes this
Comment 3 Markus Meier gentoo-dev 2017-10-24 17:36:33 UTC 
arm stable
Comment 4 Sergei Trofimovich (RETIRED) gentoo-dev 2017-10-24 19:24:40 UTC 
ia64 stable
Comment 5 Agostino Sarubbo gentoo-dev 2017-10-25 09:31:37 UTC 
amd64 stable
Comment 6 Thomas Deutschmann (RETIRED) gentoo-dev 2017-10-26 17:38:58 UTC 
x86 stable
Comment 7 Sergei Trofimovich (RETIRED) gentoo-dev 2017-10-28 20:54:00 UTC 
ppc/ppc64 stable
Comment 8 Tobias Klausmann (RETIRED) gentoo-dev 2017-11-08 12:52:04 UTC 
Stable on alpha.
Comment 9 Sergei Trofimovich (RETIRED) gentoo-dev 2017-11-19 12:20:58 UTC 
hppa stable
Comment 10 Aaron Bauman (RETIRED) gentoo-dev 2017-11-19 18:01:23 UTC 
@maintainer(s), please clean the vulnerable versions.