CyberSec.Space Logo
Back to CVE Browser

CVE-2018-11440

HIGH
8.8
CVSS Severity Score
EPSS Score0.0580%
EPSS Percentile17.99th
PublishedMay 25, 2018
Last ModifiedNov 21, 2024

Vulnerability Description

Liblouis 3.5.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c.

Affected Platforms (CPE)

πŸ“¦
Liblouis

Liblouis

= 3.5.0
πŸ’»
Canonical

Ubuntu Linux

= 14.04
πŸ’»
Canonical

Ubuntu Linux

= 16.04
πŸ’»
Canonical

Ubuntu Linux

= 17.10
πŸ’»
Canonical

Ubuntu Linux

= 18.04
πŸ’»
Opensuse

Leap

= 15.0

References & Advisories

πŸ”— http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00038.html
πŸ”— http://www.securityfocus.com/bid/104321
πŸ”— https://github.com/liblouis/liblouis/issues/575
πŸ”— https://usn.ubuntu.com/3669-1/
πŸ”— http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00038.html
πŸ”— http://www.securityfocus.com/bid/104321
πŸ”— https://github.com/liblouis/liblouis/issues/575
πŸ”— https://usn.ubuntu.com/3669-1/

Related Vulnerabilities

CVE-2018-114109.8

An issue was discovered in Liblouis 3.5.0. A invalid free in the compileRule function in compileTranslationTable.c allows remote a...

CVE-2017-137388.8

There is an illegal address access in the _lou_getALine function in compileTranslationTable.c:346 in Liblouis 3.2.0.

CVE-2017-137398.8

There is a heap-based buffer overflow that causes a more than two thousand bytes out-of-bounds write in Liblouis 3.2.0, triggered ...

CVE-2017-137408.8

There is a stack-based buffer overflow in Liblouis 3.2.0, triggered in the function parseChars() in compileTranslationTable.c, tha...