CVE-2022-26981

Name

CVE-2022-26981

Description

Liblouis through 3.21.0 has a buffer overflow in compilePassOpcode in compileTranslationTable.c (called, indirectly, by tools/lou_checktable.c).

NVD Severity

medium

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

Exploits

Forges

GitHub (code, issues), Aports (code, issues)

References

Type	URI
MISC	https://github.com/liblouis/liblouis/issues/1171
Mailing List	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CFD2KIHESDUCNWTEW3USFB5GKTWT624L/
Third Party Advisory	https://support.apple.com/kb/HT213340
Third Party Advisory	https://support.apple.com/kb/HT213345
Mailing List	http://seclists.org/fulldisclosure/2022/Jul/18
Third Party Advisory	https://support.apple.com/kb/HT213342
Mailing List	http://seclists.org/fulldisclosure/2022/Jul/16
Mailing List	http://seclists.org/fulldisclosure/2022/Jul/15
Mailing List	http://seclists.org/fulldisclosure/2022/Jul/12
Third Party Advisory	https://support.apple.com/kb/HT213346
Third Party Advisory	https://security.gentoo.org/glsa/202301-06
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CFD2KIHESDUCNWTEW3USFB5GKTWT624L/

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:liblouis:liblouis::::::::`	liblouis	>= None	<= 3.21.0

Source package	Branch	Version	Maintainer	Status
liblouis	edge-community	3.22.0-r0	None	fixed
liblouis	3.22-community	3.22.0-r0	None	fixed
liblouis	3.21-community	3.22.0-r0	None	fixed
liblouis	3.20-community	3.22.0-r0	None	fixed