Package "liblouis20"
| Name: |
liblouis20
|
Description: |
Braille translation library - shared libs
|
| Latest version: |
3.24.0-1ubuntu0.1 |
| Release: |
lunar (23.04) |
| Level: |
updates |
| Repository: |
main |
| Head package: |
liblouis |
| Homepage: |
http://liblouis.org/ |
Links
Download "liblouis20"
Other versions of "liblouis20" in Lunar
Changelog
|
liblouis (3.24.0-1ubuntu0.1) lunar-security; urgency=medium
* SECURITY UPDATE: Denial of service
- debian/patches/CVE-2023-26767.patch: check the length
of path before copying indo dataPath in
liblouis/compileTranslationTable.c, liblouis/liblouis.h.in.
- CVE-2023-26767
* SECURITY UPDATE: Buffer overflow
- debian/patches/CVE-2023-26768-1.patch: check filename before
coping to initialLogFileName in liblouis/logging.c.
- debian/patches/CVE-2023-26768-2.patch: replace the magic
number with a define in liblouis/logging.c.
- CVE-2023-26768
* SECURITY UPDATE: Buffer overflow
- debian/patches/CVE-2023-26769-1.patch: check path length
before coping into tableFile in liblouis/compileTranslationTable.c.
- debian/patches/CVE-2023-26769-2.patch: fix format in
liblouis/compileTranslationTable.c.
- debian/patches/CVE-2023-26769-3.patch: add parentheses for
define expression in liblouis/compileTranslationTable.c.
- CVE-2023-26769
-- Leonidas Da Silva Barbosa <email address hidden> Mon, 22 May 2023 10:19:18 -0300
|
| CVE-2023-26767 |
Buffer Overflow vulnerability found in Liblouis v.3.24.0 allows a remote attacker to cause a denial of service via the lou_logFile function at loggin |
| CVE-2023-26768 |
Buffer Overflow vulnerability found in Liblouis v.3.24.0 allows a remote attacker to cause a denial of service via the compileTranslationTable.c and |
| CVE-2023-26769 |
Buffer Overflow vulnerability found in Liblouis Lou_Trace v.3.24.0 allows a remote attacker to cause a denial of service via the resolveSubtable func |
|
About
-
Send Feedback to @ubuntu_updates
