Published: 24/05/2018 Updated: 05/04/2019

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

An issue exists in Liblouis 3.5.0. A invalid free in the compileRule function in compileTranslationTable.c allows remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact.

Vulnerable Product	Search on Vulmon	Subscribe to Product
liblouis liblouis 3.5.0
canonical ubuntu linux 14.04
canonical ubuntu linux 16.04
canonical ubuntu linux 18.04
canonical ubuntu linux 17.10

Debian Bug report logs - #899999 liblouis: CVE-2018-11410 Package: src:liblouis; Maintainer for src:liblouis is Debian Accessibility Team <pkg-a11y-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 24 May 2018 14:18:04 UTC Severity: important Tags: fixed-upstream, securi ...

Several security issues were fixed in Liblouis ...

An issue was discovered in Liblouis 350 A invalid free in the compileRule function in compileTranslationTablec allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact ...

CWE-416 https://docs.google.com/document/d/1Uw3D6ECXZr8S2cWOTY81kg6ivv0WpR4kQqxVpUSyGUA/edit?usp=sharing https://bugzilla.redhat.com/show_bug.cgi?id=1582024 http://www.securityfocus.com/bid/104324 https://usn.ubuntu.com/3669-1/http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00038.html https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=899999 https://usn.ubuntu.com/3669-1/https://nvd.nist.gov

CVE-2018-11410

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect