Back to CVE Browser

CVE-2017-13739

HIGH

8.8

CVSS Severity Score

EPSS Score0.1820%

EPSS Percentile35.61th

PublishedAug 29, 2017

Last ModifiedMay 13, 2026

Vulnerability Description

There is a heap-based buffer overflow that causes a more than two thousand bytes out-of-bounds write in Liblouis 3.2.0, triggered in the function resolveSubtable() in compileTranslationTable.c. It will lead to denial of service or remote code execution.

Affected Platforms (CPE)

📦

Liblouis

Liblouis

= 3.2.0

References & Advisories

🔗 http://www.securityfocus.com/bid/100607

🔗 https://bugzilla.redhat.com/show_bug.cgi?id=1484299

🔗 http://www.securityfocus.com/bid/100607

🔗 https://bugzilla.redhat.com/show_bug.cgi?id=1484299

Related Vulnerabilities

CVE-2018-114109.8

An issue was discovered in Liblouis 3.5.0. A invalid free in the compileRule function in compileTranslationTable.c allows remote a...

CVE-2017-137388.8

There is an illegal address access in the _lou_getALine function in compileTranslationTable.c:346 in Liblouis 3.2.0.

CVE-2017-137408.8

There is a stack-based buffer overflow in Liblouis 3.2.0, triggered in the function parseChars() in compileTranslationTable.c, tha...

CVE-2018-114408.8

Liblouis 3.5.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c.