SANE远程调试启用连接终止服务拒绝漏洞

The Sane project has released a new version to address this issue. SuSE Linux has released a security advisory (SuSE-SA:2003:046) and fixes to address this issue. Users who are potentially affected by this vulnerability are advised to apply appropriate fixes as soon as possible. Please see the referenced advisory for additional details regarding the application of applicable fixes. Fixes are linked below. Red Hat has released an advisory (RHSA-2003:278-01) to address this issue. Affected users are advised to apply the fixes as soon as possible. Further details regarding obtaining and applying relevant fixes is available in the referenced advisory. Debian has released security advisory DSA 379-1 to address these issues. See referenced advisory for additional details. Red Hat advisory RHSA-2003:285-03 has been released to address this issue. Mandrake has released an advisory (MDKSA-2003:099) to address this issue. Please see the attached advisory for details on obtaining and applying fixes. Conectiva Linux has released an advisory (CLA-2003:769) to address this issue. Please see the attached advisory for details on obtaining and applying fixes. SGI has released an advisory (20031002-01-U) pertaining to their ProPack Linux distribution. The advisory has been released in response to a number of RHSA advisories, and includes a patch (Patch 10027) containing updated RPM packages relating to 22 different BIDS. Patch 10027 can be obtained via the following link: http://support.sgi.com/ For information regarding how to obtain individual RPM packages included in Patch 10027, please see the attached advisory. SCO has released an advisory (CSSA-2004-005.0) and fixes to address this issue for OpenLinux. See the referenced advisory for links to fixes. SANE SANE 1.0 .0

• sane sane-backends-1.0.11.tar.gz ftp://ftp.mostang.com/pub/sane/old-versions/sane-backends-1.0.11/sane- backends-1.0.11.tar.gz

SANE SANE 1.0.1

• sane sane-backends-1.0.11.tar.gz ftp://ftp.mostang.com/pub/sane/old-versions/sane-backends-1.0.11/sane- backends-1.0.11.tar.gz

SANE sane-backend 1.0.10

• sane sane-backends-1.0.11.tar.gz ftp://ftp.mostang.com/pub/sane/old-versions/sane-backends-1.0.11/sane- backends-1.0.11.tar.gz

SANE SANE 1.0.2

• sane sane-backends-1.0.11.tar.gz ftp://ftp.mostang.com/pub/sane/old-versions/sane-backends-1.0.11/sane- backends-1.0.11.tar.gz

SANE SANE 1.0.3

• sane sane-backends-1.0.11.tar.gz ftp://ftp.mostang.com/pub/sane/old-versions/sane-backends-1.0.11/sane- backends-1.0.11.tar.gz

SANE SANE 1.0.4

• Conectiva sane-1.0.4-3U70_1cl.i386.rpmUpgrade for Conectiva Linux 7. ftp://atualizacoes.conectiva.com.br/7.0/RPMS/sane-1.0.4-3U70_1cl.i386. rpm
• Conectiva sane-devel-1.0.4-3U70_1cl.i386.rpmUpgrade for Conectiva Linux 7. ftp://atualizacoes.conectiva.com.br/7.0/RPMS/sane-devel-1.0.4-3U70_1cl .i386.rpm
• Conectiva sane-devel-static-1.0.4-3U70_1cl.i386.rpmUpgrade for Conectiva Linux 7. ftp://atualizacoes.conectiva.com.br/7.0/RPMS/sane-devel-static-1.0.4-3 U70_1cl.i386.rpm
• sane sane-backends-1.0.11.tar.gz ftp://ftp.mostang.com/pub/sane/old-versions/sane-backends-1.0.11/sane- backends-1.0.11.tar.gz

SANE SANE 1.0.5

• Red Hat sane-backends-1.0.5-4.3.i386.rpmRed Hat Enterprise Linux AS http://rhn.redhat.com
• Red Hat sane-backends-1.0.5-4.3.i386.rpmRed Hat Enterprise Linux ES http://rhn.redhat.com
• Red Hat sane-backends-1.0.5-4.3.i386.rpmRed Hat Enterprise Linux WS http://rhn.redhat.com
• Red Hat sane-backends-1.0.5-4.3.ia64.rpmRed Hat Enterprise Linux AS http://rhn.redhat.com
• Red Hat sane-backends-1.0.5-4.3.ia64.rpmRed Hat Linux Advanced Workstation 2.1 for the Itanium Processor http://rhn.redhat.com
• Red Hat sane-backends-devel-1.0.5-4.3.i386.rpmRed Hat Enterprise Linux AS http://rhn.redhat.com
• Red Hat sane-backends-devel-1.0.5-4.3.i386.rpmRed Hat Enterprise Linux ES http://rhn.redhat.com
• Red Hat sane-backends-devel-1.0.5-4.3.i386.rpmRed Hat Enterprise Linux WS http://rhn.redhat.com
• Red Hat sane-backends-devel-1.0.5-4.3.ia64.rpmRed Hat Enterprise Linux AS http://rhn.redhat.com
• Red Hat sane-backends-devel-1.0.5-4.3.ia64.rpmRed Hat Linux Advanced Workstation 2.1 for the Itanium Processor http://rhn.redhat.com
• sane sane-backends-1.0.11.tar.gz ftp://ftp.mostang.com/pub/sane/old-versions/sane-backends-1.0.11/sane- backends-1.0.11.tar.gz

SANE SANE 1.0.6

• Conectiva sane-1.0.6-3U80_1cl.i386.rpmUpgrade for Conectiva Linux 8. ftp://atualizacoes.conectiva.com.br/8/RPMS/sane-1.0.6-3U80_1cl.i386.rp m
• Conectiva sane-devel-1.0.6-3U80_1cl.i386.rpmUpgrade for Conectiva Linux 8. ftp://atualizacoes.conectiva.com.br/8/RPMS/sane-devel-1.0.6-3U80_1cl.i 386.rpm
• Conectiva sane-devel-static-1.0.6-3U80_1cl.i386.rpmUpgrade for Conectiva Linux 8. ftp://atualizacoes.conectiva.com.br/8/RPMS/sane-devel-static-1.0.6-3U8 0_1cl.i386.rpm
• sane sane-backends-1.0.11.tar.gz ftp://ftp.mostang.com/pub/sane/old-versions/sane-backends-1.0.11/sane- backends-1.0.11.tar.gz

SANE SANE 1.0.7 -beta2

• sane sane-backends-1.0.11.tar.gz ftp://ftp.mostang.com/pub/sane/old-versions/sane-backends-1.0.11/sane- backends-1.0.11.tar.gz

SANE SANE 1.0.7

• Debian libsane-dev_1.0.7-4_a

来源: REDHAT 名称: RHSA-2003:278 链接:http://www.redhat.com/support/errata/RHSA-2003-278.html 来源: DEBIAN 名称: DSA-379 链接:http://www.debian.org/security/2003/dsa-379 来源: REDHAT 名称: RHSA-2003:285 链接:http://www.redhat.com/support/errata/RHSA-2003-285.html 来源: SUSE 名称: SuSE-SA:2003:046 链接:http://www.novell.com/linux/security/advisories/2003_046_sane.html 来源: SCO 名称: CSSA-2004-005.0 链接:ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Server/CSSA-2004-005.0/CSSA-2004-005.0.txt 来源: BID 名称: 8597 链接:http://www.securityfocus.com/bid/8597 来源: BID 名称: 8593 链接:http://www.securityfocus.com/bid/8593 来源: MANDRAKE 名称: MDKSA-2003:099 链接:http://www.mandriva.com/security/advisories?name=MDKSA-2003:099