CyberSec.Space Logo
CVEブラウザに戻る

CVE-2018-11440

HIGH
8.8
CVSS Severity Score
EPSS Score0.0580%
EPSS Percentile17.99th
Published2018年5月25日
Last Modified2024年11月21日

Vulnerability Description

Liblouis 3.5.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c.

Affected Platforms (CPE)

📦
Liblouis

Liblouis

= 3.5.0
💻
Canonical

Ubuntu Linux

= 14.04
💻
Canonical

Ubuntu Linux

= 16.04
💻
Canonical

Ubuntu Linux

= 17.10
💻
Canonical

Ubuntu Linux

= 18.04
💻
Opensuse

Leap

= 15.0

References & Advisories

🔗 http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00038.html
🔗 http://www.securityfocus.com/bid/104321
🔗 https://github.com/liblouis/liblouis/issues/575
🔗 https://usn.ubuntu.com/3669-1/
🔗 http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00038.html
🔗 http://www.securityfocus.com/bid/104321
🔗 https://github.com/liblouis/liblouis/issues/575
🔗 https://usn.ubuntu.com/3669-1/

関連する脆弱性情報

CVE-2018-114109.8

An issue was discovered in Liblouis 3.5.0. A invalid free in the compileRule function in compileTranslationTable.c allows remote a...

CVE-2017-137388.8

There is an illegal address access in the _lou_getALine function in compileTranslationTable.c:346 in Liblouis 3.2.0.

CVE-2017-137398.8

There is a heap-based buffer overflow that causes a more than two thousand bytes out-of-bounds write in Liblouis 3.2.0, triggered ...

CVE-2017-137408.8

There is a stack-based buffer overflow in Liblouis 3.2.0, triggered in the function parseChars() in compileTranslationTable.c, tha...