漏洞信息详情
SANE后台程序连接用户内存消耗服务拒绝漏洞
- CNNVD编号:CNNVD-200309-031
- 危害等级: 中危
![图片[1]-SANE后台程序连接用户内存消耗服务拒绝漏洞-一一网](https://www.proyy.com/skycj/data/images/2021-05-17/30f462579bec41fc25e0b1d57503e6d6.png)
- CVE编号:
CVE-2003-0778
- 漏洞类型:
设计错误
- 发布时间:
2003-09-22
- 威胁类型:
远程
- 更新时间:
2005-10-20
- 厂 商:
sane - 漏洞来源:
Discovery credited… -
漏洞简介
sane-backends 1.0.7及其早期版本的saned和可能后来的版本在某些情况不能正确配置内存。攻击者导致服务拒绝(内存消耗)。
漏洞公告
The Sane project has released a new version to address this issue.
SuSE Linux has released a security advisory (SuSE-SA:2003:046) and fixes to address this issue. Users who are potentially affected by this vulnerability are advised to apply appropriate fixes as soon as possible. Please see the referenced advisory for additional details regarding the application of applicable fixes. Fixes are linked below.
Red Hat has released an advisory (RHSA-2003:278-01) to address this issue. Affected users are advised to apply the fixes as soon as possible. Further details regarding obtaining and applying relevant fixes is available in the referenced advisory.
Debian has released security advisory DSA 379-1 to address these issues. See referenced advisory for additional details.
Red Hat advisory RHSA-2003:285-03 released to address this issue.
Mandrake has released an advisory (MDKSA-2003:099) to address this issue. Please see the attached advisory for details on obtaining and applying fixes.
Conectiva Linux has released an advisory (CLA-2003:769) to address this issue. Please see the attached advisory for details on obtaining and applying fixes.
SGI has released an advisory (20031002-01-U) pertaining to their ProPack Linux distribution. The advisory has been released in response to a number of RHSA advisories, and includes a patch (Patch 10027) containing updated RPM packages relating to 22 different BIDS.
Patch 10027 can be obtained via the following link:
http://support.sgi.com/
For information regarding how to obtain individual RPM packages included in Patch 10027, please see the attached advisory.
SCO has released an advisory (CSSA-2004-005.0) and fixes to address this issue for OpenLinux. See the referenced advisory for links to fixes.
SANE SANE 1.0 .0
-
sane sane-backends-1.0.11.tar.gz
ftp://ftp.mostang.com/pub/sane/old-versions/sane-backends-1.0.11/sane-
backends-1.0.11.tar.gz
SANE SANE 1.0.1
-
sane sane-backends-1.0.11.tar.gz
ftp://ftp.mostang.com/pub/sane/old-versions/sane-backends-1.0.11/sane-
backends-1.0.11.tar.gz
SANE sane-backend 1.0.10
-
sane sane-backends-1.0.11.tar.gz
ftp://ftp.mostang.com/pub/sane/old-versions/sane-backends-1.0.11/sane-
backends-1.0.11.tar.gz
SANE SANE 1.0.2
-
sane sane-backends-1.0.11.tar.gz
ftp://ftp.mostang.com/pub/sane/old-versions/sane-backends-1.0.11/sane-
backends-1.0.11.tar.gz
SANE SANE 1.0.3
-
sane sane-backends-1.0.11.tar.gz
ftp://ftp.mostang.com/pub/sane/old-versions/sane-backends-1.0.11/sane-
backends-1.0.11.tar.gz
SANE SANE 1.0.4
-
Conectiva sane-1.0.4-3U70_1cl.i386.rpmUpgrade for Conectiva Linux 7.
ftp://atualizacoes.conectiva.com.br/7.0/RPMS/sane-1.0.4-3U70_1cl.i386.
rpm -
Conectiva sane-devel-1.0.4-3U70_1cl.i386.rpmUpgrade for Conectiva Linux 7.
ftp://atualizacoes.conectiva.com.br/7.0/RPMS/sane-devel-1.0.4-3U70_1cl
.i386.rpm -
Conectiva sane-devel-static-1.0.4-3U70_1cl.i386.rpmUpgrade for Conectiva Linux 7.
ftp://atualizacoes.conectiva.com.br/7.0/RPMS/sane-devel-static-1.0.4-3
U70_1cl.i386.rpm -
sane sane-backends-1.0.11.tar.gz
ftp://ftp.mostang.com/pub/sane/old-versions/sane-backends-1.0.11/sane-
backends-1.0.11.tar.gz
SANE SANE 1.0.5
-
Red Hat sane-backends-1.0.5-4.3.i386.rpmRed Hat Enterprise Linux AS
http://rhn.redhat.com -
Red Hat sane-backends-1.0.5-4.3.i386.rpmRed Hat Enterprise Linux ES
http://rhn.redhat.com -
Red Hat sane-backends-1.0.5-4.3.i386.rpmRed Hat Enterprise Linux WS
http://rhn.redhat.com -
Red Hat sane-backends-1.0.5-4.3.ia64.rpmRed Hat Enterprise Linux AS
http://rhn.redhat.com -
Red Hat sane-backends-1.0.5-4.3.ia64.rpmRed Hat Linux Advanced Workstation 2.1 for the Itanium Processor
http://rhn.redhat.com -
Red Hat sane-backends-devel-1.0.5-4.3.i386.rpmRed Hat Enterprise Linux AS
http://rhn.redhat.com -
Red Hat sane-backends-devel-1.0.5-4.3.i386.rpmRed Hat Enterprise Linux ES
http://rhn.redhat.com -
Red Hat sane-backends-devel-1.0.5-4.3.i386.rpmRed Hat Enterprise Linux WS
http://rhn.redhat.com -
Red Hat sane-backends-devel-1.0.5-4.3.ia64.rpmRed Hat Enterprise Linux AS
http://rhn.redhat.com -
Red Hat sane-backends-devel-1.0.5-4.3.ia64.rpmRed Hat Linux Advanced Workstation 2.1 for the Itanium Processor
http://rhn.redhat.com -
sane sane-backends-1.0.11.tar.gz
ftp://ftp.mostang.com/pub/sane/old-versions/sane-backends-1.0.11/sane-
backends-1.0.11.tar.gz
SANE SANE 1.0.6
-
Conectiva sane-1.0.6-3U80_1cl.i386.rpmUpgrade for Conectiva Linux 8.
ftp://atualizacoes.conectiva.com.br/8/RPMS/sane-1.0.6-3U80_1cl.i386.rp
m -
Conectiva sane-devel-1.0.6-3U80_1cl.i386.rpmUpgrade for Conectiva Linux 8.
ftp://atualizacoes.conectiva.com.br/8/RPMS/sane-devel-1.0.6-3U80_1cl.i
386.rpm -
Conectiva sane-devel-static-1.0.6-3U80_1cl.i386.rpmUpgrade for Conectiva Linux 8.
ftp://atualizacoes.conectiva.com.br/8/RPMS/sane-devel-static-1.0.6-3U8
0_1cl.i386.rpm -
sane sane-backends-1.0.11.tar.gz
ftp://ftp.mostang.com/pub/sane/old-versions/sane-backends-1.0.11/sane-
backends-1.0.11.tar.gz
SANE SANE 1.0.7 -beta2
-
sane sane-backends-1.0.11.tar.gz
ftp://ftp.mostang.com/pub/sane/old-versions/sane-backends-1.0.11/sane-
backends-1.0.11.tar.gz
SANE SANE 1.0.7
- Debian libsane-dev_1.0.7-4_alpha.deb
参考网址
来源: REDHAT
名称: RHSA-2003:278
链接:http://www.redhat.com/support/errata/RHSA-2003-278.html
来源: DEBIAN
名称: DSA-379
链接:http://www.debian.org/security/2003/dsa-379
来源: REDHAT
名称: RHSA-2003:285
链接:http://www.redhat.com/support/errata/RHSA-2003-285.html
来源: SUSE
名称: SuSE-SA:2003:046
链接:http://www.novell.com/linux/security/advisories/2003_046_sane.html
来源: SCO
名称: CSSA-2004-005.0
链接:ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Server/CSSA-2004-005.0/CSSA-2004-005.0.txt
来源: BID
名称: 8596
链接:http://www.securityfocus.com/bid/8596
来源: BID
名称: 8593
链接:http://www.securityfocus.com/bid/8593
来源: MANDRAKE
名称: MDKSA-2003:099
链接:http://www.mandriva.com/security/advisories?name=MDKSA-2003:099
![[桜井宁宁]COS和泉纱雾超可爱写真福利集-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/4d3cf227a85d7e79f5d6b4efb6bde3e8.jpg)
![[桜井宁宁] 爆乳奶牛少女cos写真-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/d40483e126fcf567894e89c65eaca655.jpg)
