Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.OPENSUSE-2020-1798.NASL
HistoryNov 02, 2020 - 12:00 a.m.

openSUSE Security Update : sane-backends (openSUSE-2020-1798)

2020-11-0200:00:00
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
13

5.9 Medium

AI Score

Confidence

High

JSON

This update for sane-backends fixes the following issues :

sane-backends was updated to 1.0.31 to further improve hardware enablement for scanner devices (jsc#ECO-2418 jsc#SLE-15561 jsc#SLE-15560) and also fix various security issues :

  • CVE-2020-12861,CVE-2020-12865: Fixed an out of bounds write (bsc#1172524)

  • CVE-2020-12862,CVE-2020-12863,CVE-2020-12864,: Fixed an out of bounds read (bsc#1172524)

  • CVE-2020-12866,CVE-2020-12867: Fixed a NULL pointer dereference (bsc#1172524)

The upstream changelogs can be found here :

This update was imported from the SUSE:SLE-15:Update update project.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2020-1798.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('compat.inc');

if (description)
{
  script_id(142181);
  script_version("1.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/02/13");

  script_cve_id(
    "CVE-2020-12861",
    "CVE-2020-12862",
    "CVE-2020-12863",
    "CVE-2020-12864",
    "CVE-2020-12865",
    "CVE-2020-12866",
    "CVE-2020-12867"
  );

  script_name(english:"openSUSE Security Update : sane-backends (openSUSE-2020-1798)");

  script_set_attribute(attribute:"synopsis", value:
"The remote openSUSE host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"This update for sane-backends fixes the following issues :

sane-backends was updated to 1.0.31 to further improve hardware
enablement for scanner devices (jsc#ECO-2418 jsc#SLE-15561
jsc#SLE-15560) and also fix various security issues :

  - CVE-2020-12861,CVE-2020-12865: Fixed an out of bounds
    write (bsc#1172524)

  - CVE-2020-12862,CVE-2020-12863,CVE-2020-12864,: Fixed an
    out of bounds read (bsc#1172524)

  - CVE-2020-12866,CVE-2020-12867: Fixed a NULL pointer
    dereference (bsc#1172524)

The upstream changelogs can be found here :

- https://gitlab.com/sane-project/backends/-/releases/1.0.28

- https://gitlab.com/sane-project/backends/-/releases/1.0.29

- https://gitlab.com/sane-project/backends/-/releases/1.0.30

- https://gitlab.com/sane-project/backends/-/releases/1.0.31

This update was imported from the SUSE:SLE-15:Update update project.");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1172524");
  script_set_attribute(attribute:"see_also", value:"https://gitlab.com/sane-project/backends/-/releases/1.0.28");
  script_set_attribute(attribute:"see_also", value:"https://gitlab.com/sane-project/backends/-/releases/1.0.29");
  script_set_attribute(attribute:"see_also", value:"https://gitlab.com/sane-project/backends/-/releases/1.0.30");
  script_set_attribute(attribute:"see_also", value:"https://gitlab.com/sane-project/backends/-/releases/1.0.31");
  script_set_attribute(attribute:"solution", value:
"Update the affected sane-backends packages.");
  script_set_cvss_base_vector("CVSS2#AV:A/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-12861");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2020/06/01");
  script_set_attribute(attribute:"patch_publication_date", value:"2020/11/01");
  script_set_attribute(attribute:"plugin_publication_date", value:"2020/11/02");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:sane-backends");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:sane-backends-32bit");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:sane-backends-32bit-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:sane-backends-autoconfig");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:sane-backends-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:sane-backends-debugsource");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:sane-backends-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:sane-backends-devel-32bit");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:15.2");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"SuSE Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE15\.2)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "15.2", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE15.2", reference:"sane-backends-1.0.31-lp152.7.3.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"sane-backends-autoconfig-1.0.31-lp152.7.3.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"sane-backends-debuginfo-1.0.31-lp152.7.3.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"sane-backends-debugsource-1.0.31-lp152.7.3.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", reference:"sane-backends-devel-1.0.31-lp152.7.3.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", cpu:"x86_64", reference:"sane-backends-32bit-1.0.31-lp152.7.3.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", cpu:"x86_64", reference:"sane-backends-32bit-debuginfo-1.0.31-lp152.7.3.1") ) flag++;
if ( rpm_check(release:"SUSE15.2", cpu:"x86_64", reference:"sane-backends-devel-32bit-1.0.31-lp152.7.3.1") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "sane-backends / sane-backends-autoconfig / sane-backends-debuginfo / etc");
}
VendorProductVersionCPE
novellopensusesane-backendsp-cpe:/a:novell:opensuse:sane-backends
novellopensusesane-backends-32bitp-cpe:/a:novell:opensuse:sane-backends-32bit
novellopensusesane-backends-32bit-debuginfop-cpe:/a:novell:opensuse:sane-backends-32bit-debuginfo
novellopensusesane-backends-autoconfigp-cpe:/a:novell:opensuse:sane-backends-autoconfig
novellopensusesane-backends-debuginfop-cpe:/a:novell:opensuse:sane-backends-debuginfo
novellopensusesane-backends-debugsourcep-cpe:/a:novell:opensuse:sane-backends-debugsource
novellopensusesane-backends-develp-cpe:/a:novell:opensuse:sane-backends-devel
novellopensusesane-backends-devel-32bitp-cpe:/a:novell:opensuse:sane-backends-devel-32bit
novellopensuse15.2cpe:/o:novell:opensuse:15.2

Related

suse 2
mageia 1
nessus 25
freebsd 1
slackware 1
ubuntu 1
debian 3
osv 4
redhat 4
almalinux 2
oraclelinux 2
veracode 7
cve 7
prion 7
alpinelinux 7
debiancve 7
ubuntucve 7
redhatcve 7
rocky 1
openvas 2
fedora 1
suse
suse
Security update for sane-backends (important)
2020-10-31 00:00:00
Security update for sane-backends (important)
2020-11-01 00:00:00
mageia
mageia
Updated sane packages fix security vulnerabilities
2020-09-04 12:16:18
nessus
nessus
openSUSE Security Update : sane-backends (openSUSE-2020-1791)
2020-11-02 00:00:00
Slackware 14.0 / 14.1 / 14.2 / current : sane (SSA:2020-139-01)
2020-05-19 00:00:00
FreeBSD : Sane -- Multiple Vulnerabilities (28481349-7e20-4f80-ae1e-e6bf48d4f17c)
2020-05-29 00:00:00
freebsd
freebsd
Sane -- Multiple Vulnerabilities
2020-05-17 00:00:00
slackware
slackware
[slackware-security] sane
2020-05-18 19:57:23
ubuntu
ubuntu
sane-backends vulnerabilities
2020-08-24 00:00:00
debian
debian
[SECURITY] [DLA 2332-1] sane-backends security update
2020-08-17 21:45:33
[SECURITY] [DLA 2332-2] sane-backends regression update
2020-10-07 12:34:43
[SECURITY] [DLA 2231-1] sane-backends security update
2020-05-31 21:20:23
osv
osv
sane-backends - security update
2020-08-17 00:00:00
Moderate: sane-backends security update
2021-05-18 05:58:46
sane-backends - security update
2020-05-31 00:00:00
redhat
redhat
(RHSA-2020:3045) Important: sane-backends security update
2020-07-21 14:16:13
(RHSA-2020:2902) Important: sane-backends security update
2020-07-14 08:48:29
(RHSA-2020:2967) Important: sane-backends security update
2020-07-16 07:11:16
almalinux
almalinux
Important: sane-backends security update
2020-07-14 08:48:29
Moderate: sane-backends security update
2021-05-18 05:58:46
oraclelinux
oraclelinux
sane-backends security update
2020-07-14 00:00:00
sane-backends security update
2021-05-25 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-12-10 16:09:02
Arbitrary Code Execution
2020-12-10 16:08:56
Information Disclosure
2020-12-10 16:08:52
cve
cve
CVE-2020-12866
2020-06-24 13:15:00
CVE-2020-12863
2020-06-24 13:15:00
CVE-2020-12861
2020-06-24 13:15:00
prion
prion
Null pointer dereference
2020-06-24 13:15:00
Heap overflow
2020-06-24 13:15:00
Design/Logic Flaw
2020-06-24 13:15:00
alpinelinux
alpinelinux
CVE-2020-12866
2020-06-24 13:15:00
CVE-2020-12861
2020-06-24 13:15:00
CVE-2020-12865
2020-06-24 13:15:00
debiancve
debiancve
CVE-2020-12866
2020-06-24 13:15:00
CVE-2020-12861
2020-06-24 13:15:00
CVE-2020-12864
2020-06-24 13:15:00
ubuntucve
ubuntucve
CVE-2020-12866
2020-06-24 00:00:00
CVE-2020-12861
2020-06-24 00:00:00
CVE-2020-12867
2020-06-01 00:00:00
redhatcve
redhatcve
CVE-2020-12861
2020-06-24 13:51:00
CVE-2020-12864
2020-06-24 13:50:52
CVE-2020-12866
2020-06-24 13:51:11
rocky
rocky
sane-backends security update
2021-05-18 05:58:46
openvas
openvas
Debian LTS: Security Advisory for sane-backends (DLA-2231-1)
2020-06-01 00:00:00
Fedora: Security Advisory for mingw-sane-backends (FEDORA-2020-b845771719)
2020-06-26 00:00:00
fedora
fedora
[SECURITY] Fedora 32 Update: mingw-sane-backends-1.0.30-1.fc32
2020-06-26 00:47:44

5.9 Medium

AI Score

Confidence

High

JSON
Related for OPENSUSE-2020-1798.NASL
suse2mageia1nessus25freebsd1slackware1ubuntu1debian3osv4redhat4almalinux2oraclelinux2veracode7cve7prion7alpinelinux7debiancve7ubuntucve7redhatcve7rocky1openvas2fedora1