Multiple Sane Package Remote Vulnerabilities
The Sane project has released a new version to address this issue.
Debian has released security advisory DSA 379-1 to address these issues. See referenced advisory for additional details.
Red Hat has released advisory RHSA-2003:285-03 to address this issue in their Linux Enterprise software. Relevant patches are available through the Red Hat Network. See the referenced advisory for additional details.
SGI has released an advisory (20031002-01-U) pertaining to their ProPack Linux distribution. The advisory has been released in response to a number of RHSA advisories, and includes a patch (Patch 10027) containing updated RPM packages relating to 22 different BIDS.
Patch 10027 can be obtained via the following link:
For information regarding how to obtain individual RPM packages included in Patch 10027, please see the attached advisory.
SANE SANE 1.0 .0
SANE SANE 1.0.1
SANE sane-backend 1.0.10
SANE SANE 1.0.2
SANE SANE 1.0.3
SANE SANE 1.0.4
SANE SANE 1.0.5
SANE SANE 1.0.6
SANE SANE 1.0.7 -beta2
SANE SANE 1.0.7
SANE SANE 1.0.7 -beta1
SANE SANE 1.0.8
SANE SANE 1.0.9