Vulnerabilities > Liblouis > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-06-02 CVE-2022-31783 Out-of-bounds Write vulnerability in multiple products
Liblouis 3.21.0 has an out-of-bounds write in compileRule in compileTranslationTable.c, as demonstrated by lou_trace.
local
low complexity
liblouis fedoraproject CWE-787
5.5
2018-09-21 CVE-2018-17294 Out-of-bounds Read vulnerability in multiple products
The matchCurrentInput function inside lou_translateString.c of Liblouis prior to 3.7 does not check the input string's length, allowing attackers to cause a denial of service (application crash via out-of-bounds read) by crafting an input file with certain translation dictionaries.
network
low complexity
liblouis canonical opensuse CWE-125
6.5
2017-08-29 CVE-2017-13744 Out-of-bounds Read vulnerability in Liblouis 3.2.0
There is an illegal address access in the function _lou_getALine() in compileTranslationTable.c:343 in Liblouis 3.2.0.
network
low complexity
liblouis CWE-125
6.5
2017-08-29 CVE-2017-13743 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Liblouis 3.2.0
There is a buffer overflow in Liblouis 3.2.0, triggered in the function _lou_showString() in utils.c, that will lead to a remote denial of service attack.
network
low complexity
liblouis CWE-119
6.5
2017-08-29 CVE-2017-13742 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Liblouis 3.2.0
There is a stack-based buffer overflow in Liblouis 3.2.0, triggered in the function includeFile() in compileTranslationTable.c, that will lead to a remote denial of service attack.
network
low complexity
liblouis CWE-119
6.5
2017-08-29 CVE-2017-13741 Use After Free vulnerability in Liblouis 3.2.0
There is a use-after-free in the function compileBrailleIndicator() in compileTranslationTable.c in Liblouis 3.2.0 that will lead to a remote denial of service attack.
network
low complexity
liblouis CWE-416
6.5