SUSE-SU-2017:2570-1 -- SLES liblouis-debugsource, liblouis-data, liblouis9, python-louis, python3-louisID: oval:org.secpod.oval:def:89044793 | Date: (C)2021-07-20 (M)2022-10-10 |
Class: PATCH | Family: unix |
This update for liblouis fixes several issues. These security issues were fixed: - CVE-2017-13738: Prevent illegal address access in the _lou_getALine function that allowed to cause remote DoS . - CVE-2017-13739: Prevent heap-based buffer overflow in the function resolveSubtable that could have caused DoS or remote code execution . - CVE-2017-13740: Prevent stack-based buffer overflow in the function parseChars that could have caused DoS or possibly unspecified other impact - CVE-2017-13741: Prevent use-after-free in function compileBrailleIndicator that allowed to cause remote DoS . - CVE_2017-13742: Prevent stack-based buffer overflow in function includeFile that allowed to cause remote DoS . - CVE-2017-13743: Prevent buffer overflow triggered in the function _lou_showString that allowed to cause remote DoS . - CVE-2017-13744: Prevent illegal address access in the function _lou_getALine that allowed to cause remote DoS .
Platform: |
SUSE Linux Enterprise Server 12 SP3 |
SUSE Linux Enterprise Server 12 SP2 |
Product: |
liblouis-debugsource |
liblouis-data |
liblouis9 |
python-louis |
python3-louis |