Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 635360 (CVE-2017-13739, CVE-2017-13740, CVE-2017-13741, CVE-2017-13742, CVE-2017-13743, CVE-2017-13744)

Summary: <dev-libs/liblouis-3.10.0: Multiple vulnerabilities
Product: Gentoo Security Reporter: GLSAMaker/CVETool Bot <glsamaker>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED FIXED    
Severity: normal CC: accessibility
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard: B2 [noglsa cve]
Package list:
Runtime testing required: ---
Bug Depends on: 661150    
Bug Blocks:    

Description GLSAMaker/CVETool Bot gentoo-dev 2017-10-24 20:17:53 UTC
CVE-2017-13739 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-13739):
  There is a heap-based buffer overflow that causes a more than two thousand
  bytes out-of-bounds write in Liblouis 3.2.0, triggered in the function
  resolveSubtable() in compileTranslationTable.c. It will lead to denial of
  service or remote code execution.