CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2018-11410

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1090%
EPSS Percentile12.71th
Published2018年5月24日
Last Modified2024年11月21日

Vulnerability Description

An issue was discovered in Liblouis 3.5.0. A invalid free in the compileRule function in compileTranslationTable.c allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact.

Affected Platforms (CPE)

📦
Liblouis

Liblouis

= 3.5.0
💻
Canonical

Ubuntu Linux

= 14.04
💻
Canonical

Ubuntu Linux

= 16.04
💻
Canonical

Ubuntu Linux

= 17.10
💻
Canonical

Ubuntu Linux

= 18.04

References & Advisories

🔗 http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00038.html
🔗 http://www.securityfocus.com/bid/104324
🔗 https://bugzilla.redhat.com/show_bug.cgi?id=1582024
🔗 https://docs.google.com/document/d/1Uw3D6ECXZr8S2cWOTY81kg6ivv0WpR4kQqxVpUSyGUA/edit?usp=sharing
🔗 https://usn.ubuntu.com/3669-1/
🔗 http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00038.html
🔗 http://www.securityfocus.com/bid/104324
🔗 https://bugzilla.redhat.com/show_bug.cgi?id=1582024

相關漏洞威脅

CVE-2017-137408.8

There is a stack-based buffer overflow in Liblouis 3.2.0, triggered in the function parseChars() in compileTranslationTable.c, tha...

CVE-2017-137388.8

There is an illegal address access in the _lou_getALine function in compileTranslationTable.c:346 in Liblouis 3.2.0.

CVE-2017-137398.8

There is a heap-based buffer overflow that causes a more than two thousand bytes out-of-bounds write in Liblouis 3.2.0, triggered ...

CVE-2018-114408.8

Liblouis 3.5.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c.

CVE-2018-11410 Detail & Impact Analysis | CVSS 9.8 (CRITICAL) | Cyber-Sec.Space | Cyber-Sec.Space