Liblouis - (bulletinoct2019)ID: oval:org.secpod.oval:def:2105116 | Date: (C)2019-12-31 (M)2023-04-28 |
Class: PATCH | Family: unix |
The matchCurrentInput function inside lou_translateString.c of Liblouis prior to 3.7 does not check the input string"s length, allowing attackers to cause a denial of service (application crash via out-of-bounds read) by crafting an input file with certain translation dictionaries.
Product: |
library/libsoup |
library/liblouis |
image/library/librsvg |
desktop/xdg/xdg-utils |
desktop/pdf-viewer/evince |