Bug#854804: [sane-devel] Bug#854804: saned: SANE_NET_CONTROL_OPTION response packet may contain memory contents of the server

Hi Olaf, On 02/19/2017 02:53 PM, Olaf Meeuwissen wrote: > Attached is a minimal hack/patch that *tries* to fix it. I have only > checked that it compiles. Could you take a look at whether it fixes > the issue and does not break saned? Thank you for your patch. I performed some basic tests and i

Bug#854804: saned: SANE_NET_CONTROL_OPTION response packet may contain memory contents of the server

Hello Jörg, On 02/12/2017 02:43 PM, Jörg Frings-Fürst wrote: > severity 854804 important > tags 854804 + moreinfo - security > thanks > > > Hello Kritphong, > > > Am Sonntag, den 12.02.2017, 00:16 +0700 schrieb Kritphong > Mongkhonvanit: >> tags 854804 - mor

Bug#854804: saned: SANE_NET_CONTROL_OPTION response packet may contain memory contents of the server

:33 -0500 schrieb Kritphong Mongkhonvanit: Package: sane-utils Version: 1.0.25-3 Severity: grave Tags: security upstream Justification: user security hole Dear Maintainer, When saned received a SANE_NET_CONTROL_OPTION packet with value_type == SANE_TYPE_STRING and value_size larger than

Bug#854804: saned: SANE_NET_CONTROL_OPTION response packet may contain memory contents of the server

Package: sane-utils Version: 1.0.25-3 Severity: grave Tags: security upstream Justification: user security hole Dear Maintainer, When saned received a SANE_NET_CONTROL_OPTION packet with value_type == SANE_TYPE_STRING and value_size larger than the actual length of the requested string, the respo