CVE-2020-12862
24.06.2020, 13:15
An out-of-bounds read in SANE Backends before 1.0.30 may allow a malicious device connected to the same local network as the victim to read important information, such as the ASLR offsets of the program, aka GHSL-2020-082.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| sane-project | sane_backends | 𝑥 < 1.0.30 |
| canonical | ubuntu_linux | 16.04 |
| canonical | ubuntu_linux | 18.04 |
| canonical | ubuntu_linux | 20.04 |
| debian | debian_linux | 9.0 |
| opensuse | leap | 15.1 |
| opensuse | leap | 15.2 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| sane-backends |
| ||||||||||||||||||||||||||||||||||||||||||||||||
| sane-backends-32bit |
| ||||||||||||||||||||||||||||||||||||||||||||||||
| sane-backends-autoconfig |
| ||||||||||||||||||||||||||||||||||||||||||||||||
| sane-backends-devel |
|
Common Weakness Enumeration
References