CyberSec.Space Logo
Back to CVE Browser

CVE-2014-8184

HIGH
7.8
CVSS Severity Score
EPSS Score0.0060%
EPSS Percentile33.47th
PublishedAug 2, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

A vulnerability was found in liblouis, versions 2.5.x before 2.5.4. A stack-based buffer overflow was found in findTable() in liblouis. An attacker could create a malicious file that would cause applications that use liblouis (such as Orca) to crash, or potentially execute arbitrary code when opened.

Affected Platforms (CPE)

πŸ“¦
Liblouis

Liblouis

>= 2.5.0 and < 2.5.4

References & Advisories

πŸ”— https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-8184
πŸ”— https://github.com/liblouis/liblouis/issues/425
πŸ”— https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-8184
πŸ”— https://github.com/liblouis/liblouis/issues/425

Related Vulnerabilities

CVE-2018-114109.8

An issue was discovered in Liblouis 3.5.0. A invalid free in the compileRule function in compileTranslationTable.c allows remote a...

CVE-2017-137398.8

There is a heap-based buffer overflow that causes a more than two thousand bytes out-of-bounds write in Liblouis 3.2.0, triggered ...

CVE-2017-137408.8

There is a stack-based buffer overflow in Liblouis 3.2.0, triggered in the function parseChars() in compileTranslationTable.c, tha...

CVE-2017-137388.8

There is an illegal address access in the _lou_getALine function in compileTranslationTable.c:346 in Liblouis 3.2.0.