SANE Remote Dubug Enabled Connection Dropping Denial of Service Vulnerability
The Sane project has released a new version to address this issue.
SuSE Linux has released a security advisory (SuSE-SA:2003:046) and fixes to address this issue. Users who are potentially affected by this vulnerability are advised to apply appropriate fixes as soon as possible. Please see the referenced advisory for additional details regarding the application of applicable fixes. Fixes are linked below.
Red Hat has released an advisory (RHSA-2003:278-01) to address this issue. Affected users are advised to apply the fixes as soon as possible. Further details regarding obtaining and applying relevant fixes is available in the referenced advisory.
Debian has released security advisory DSA 379-1 to address these issues. See referenced advisory for additional details.
Red Hat advisory RHSA-2003:285-03 has been released to address this issue.
Mandrake has released an advisory (MDKSA-2003:099) to address this issue. Please see the attached advisory for details on obtaining and applying fixes.
Conectiva Linux has released an advisory (CLA-2003:769) to address this issue. Please see the attached advisory for details on obtaining and applying fixes.
SGI has released an advisory (20031002-01-U) pertaining to their ProPack Linux distribution. The advisory has been released in response to a number of RHSA advisories, and includes a patch (Patch 10027) containing updated RPM packages relating to 22 different BIDS.
Patch 10027 can be obtained via the following link:
For information regarding how to obtain individual RPM packages included in Patch 10027, please see the attached advisory.
SCO has released an advisory (CSSA-2004-005.0) and fixes to address this issue for OpenLinux. See the referenced advisory for links to fixes.
SANE SANE 1.0 .0
SANE SANE 1.0.1
SANE sane-backend 1.0.10
SANE SANE 1.0.2
SANE SANE 1.0.3
SANE SANE 1.0.4
SANE SANE 1.0.5
SANE SANE 1.0.6
SANE SANE 1.0.7 -beta2
SANE SANE 1.0.7
SANE SANE 1.0.7 -beta1
SANE SANE 1.0.8
SANE SANE 1.0.9