Liblouis
By the Year
In 2024 there have been 0 vulnerabilities in Liblouis . Last year Liblouis had 3 security vulnerabilities published. Right now, Liblouis is on track to have less security vulnerabilities in 2024 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 3 | 7.50 |
| 2022 | 2 | 6.65 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 1 | 7.80 |
| 2018 | 8 | 8.64 |
It may take a day or so for new Liblouis vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Liblouis Security Vulnerabilities
Buffer Overflow vulnerability found in Liblouis Lou_Trace v.3.24.0
CVE-2023-26769
7.5 - High
- March 16, 2023
Buffer Overflow vulnerability found in Liblouis Lou_Trace v.3.24.0 allows a remote attacker to cause a denial of service via the resolveSubtable function at compileTranslationTabel.c.
Classic Buffer Overflow
Buffer Overflow vulnerability found in Liblouis v.3.24.0
CVE-2023-26768
7.5 - High
- March 16, 2023
Buffer Overflow vulnerability found in Liblouis v.3.24.0 allows a remote attacker to cause a denial of service via the compileTranslationTable.c and lou_setDataPath functions.
Classic Buffer Overflow
Buffer Overflow vulnerability found in Liblouis v.3.24.0
CVE-2023-26767
7.5 - High
- March 16, 2023
Buffer Overflow vulnerability found in Liblouis v.3.24.0 allows a remote attacker to cause a denial of service via the lou_logFile function at logginc.c endpoint.
Classic Buffer Overflow
Liblouis 3.21.0 has an out-of-bounds write in compileRule in compileTranslationTable.c
CVE-2022-31783
5.5 - Medium
- June 02, 2022
Liblouis 3.21.0 has an out-of-bounds write in compileRule in compileTranslationTable.c, as demonstrated by lou_trace.
Memory Corruption
Liblouis through 3.21.0 has a buffer overflow in compilePassOpcode in compileTranslationTable.c (called
CVE-2022-26981
7.8 - High
- March 13, 2022
Liblouis through 3.21.0 has a buffer overflow in compilePassOpcode in compileTranslationTable.c (called, indirectly, by tools/lou_checktable.c).
Classic Buffer Overflow
A vulnerability was found in liblouis, versions 2.5.x before 2.5.4
CVE-2014-8184
7.8 - High
- August 02, 2019
A vulnerability was found in liblouis, versions 2.5.x before 2.5.4. A stack-based buffer overflow was found in findTable() in liblouis. An attacker could create a malicious file that would cause applications that use liblouis (such as Orca) to crash, or potentially execute arbitrary code when opened.
Stack Overflow
The matchCurrentInput function inside lou_translateString.c of Liblouis prior to 3.7 does not check the input string's length
CVE-2018-17294
6.5 - Medium
- September 21, 2018
The matchCurrentInput function inside lou_translateString.c of Liblouis prior to 3.7 does not check the input string's length, allowing attackers to cause a denial of service (application crash via out-of-bounds read) by crafting an input file with certain translation dictionaries.
Out-of-bounds Read
Liblouis 3.6.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c
CVE-2018-12085
8.8 - High
- June 09, 2018
Liblouis 3.6.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c, a different vulnerability than CVE-2018-11440.
Memory Corruption
Liblouis 3.5.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c
CVE-2018-11683
8.8 - High
- June 04, 2018
Liblouis 3.5.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c, a different vulnerability than CVE-2018-11440.
Memory Corruption
Liblouis 3.5.0 has a stack-based Buffer Overflow in the function includeFile in compileTranslationTable.c.
CVE-2018-11684
8.8 - High
- June 04, 2018
Liblouis 3.5.0 has a stack-based Buffer Overflow in the function includeFile in compileTranslationTable.c.
Memory Corruption
Liblouis 3.5.0 has a stack-based Buffer Overflow in the function compileHyphenation in compileTranslationTable.c.
CVE-2018-11685
8.8 - High
- June 04, 2018
Liblouis 3.5.0 has a stack-based Buffer Overflow in the function compileHyphenation in compileTranslationTable.c.
Memory Corruption
Liblouis 3.5.0 has a Segmentation fault in lou_logPrint in logging.c.
CVE-2018-11577
8.8 - High
- May 31, 2018
Liblouis 3.5.0 has a Segmentation fault in lou_logPrint in logging.c.
Classic Buffer Overflow
Liblouis 3.5.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c.
CVE-2018-11440
8.8 - High
- May 25, 2018
Liblouis 3.5.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c.
Memory Corruption
An issue was discovered in Liblouis 3.5.0
CVE-2018-11410
9.8 - Critical
- May 24, 2018
An issue was discovered in Liblouis 3.5.0. A invalid free in the compileRule function in compileTranslationTable.c allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact.
Dangling pointer
