Vulnerabilities > Liblouis

DATE CVE VULNERABILITY TITLE RISK
2023-03-16 CVE-2023-26767 Classic Buffer Overflow vulnerability in Liblouis 3.24.0
Buffer Overflow vulnerability found in Liblouis v.3.24.0 allows a remote attacker to cause a denial of service via the lou_logFile function at logginc.c endpoint.
network
low complexity
liblouis CWE-120
7.5
2023-03-16 CVE-2023-26768 Classic Buffer Overflow vulnerability in Liblouis 3.24.0
Buffer Overflow vulnerability found in Liblouis v.3.24.0 allows a remote attacker to cause a denial of service via the compileTranslationTable.c and lou_setDataPath functions.
network
low complexity
liblouis CWE-120
7.5
2023-03-16 CVE-2023-26769 Classic Buffer Overflow vulnerability in Liblouis 3.24.0
Buffer Overflow vulnerability found in Liblouis Lou_Trace v.3.24.0 allows a remote attacker to cause a denial of service via the resolveSubtable function at compileTranslationTabel.c.
network
low complexity
liblouis CWE-120
7.5
2022-06-02 CVE-2022-31783 Out-of-bounds Write vulnerability in multiple products
Liblouis 3.21.0 has an out-of-bounds write in compileRule in compileTranslationTable.c, as demonstrated by lou_trace.
local
low complexity
liblouis fedoraproject CWE-787
5.5
2022-03-13 CVE-2022-26981 Classic Buffer Overflow vulnerability in multiple products
Liblouis through 3.21.0 has a buffer overflow in compilePassOpcode in compileTranslationTable.c (called, indirectly, by tools/lou_checktable.c).
local
low complexity
liblouis fedoraproject apple CWE-120
7.8
2019-08-02 CVE-2014-8184 Unspecified vulnerability in Liblouis
A vulnerability was found in liblouis, versions 2.5.x before 2.5.4.
local
low complexity
liblouis
7.8
2018-09-21 CVE-2018-17294 Out-of-bounds Read vulnerability in multiple products
The matchCurrentInput function inside lou_translateString.c of Liblouis prior to 3.7 does not check the input string's length, allowing attackers to cause a denial of service (application crash via out-of-bounds read) by crafting an input file with certain translation dictionaries.
network
low complexity
liblouis canonical opensuse CWE-125
6.5
2018-07-27 CVE-2017-15101 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
A missing patch for a stack-based buffer overflow in findTable() was found in Red Hat version of liblouis before 2.5.4.
network
low complexity
liblouis redhat CWE-119
critical
9.8
2018-06-09 CVE-2018-12085 Out-of-bounds Write vulnerability in multiple products
Liblouis 3.6.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c, a different vulnerability than CVE-2018-11440.
network
low complexity
liblouis canonical opensuse CWE-787
8.8
2018-06-04 CVE-2018-11685 Out-of-bounds Write vulnerability in multiple products
Liblouis 3.5.0 has a stack-based Buffer Overflow in the function compileHyphenation in compileTranslationTable.c.
network
low complexity
liblouis canonical opensuse CWE-787
8.8