CVE-2017-13739
Description
There is a heap-based buffer overflow that causes a more than two thousand bytes out-of-bounds write in Liblouis 3.2.0, triggered in the function resolveSubtable() in compileTranslationTable.c. It will lead to denial of service or remote code execution.
Risk Information
Base Score
8.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.783
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| SUSE-SU-2017:2570-1(SUSE Linux Enterprise Desktop 12-SP2 ) liblouis-data-2.6.4-6.3.1.x86_64.rpm | Linux |
| SUSE-SU-2017:2570-1(SUSE Linux Enterprise Desktop 12-SP2 ) liblouis-debugsource-2.6.4-6.3.1.x86_64.rpm | Linux |
| SUSE-SU-2017:2570-1(SUSE Linux Enterprise Desktop 12-SP2 ) liblouis9-2.6.4-6.3.1.x86_64.rpm | Linux |
| SUSE-SU-2017:2570-1(SUSE Linux Enterprise Desktop 12-SP2 ) liblouis9-debuginfo-2.6.4-6.3.1.x86_64.rpm | Linux |
| SUSE-SU-2017:2570-1(SUSE Linux Enterprise Server 12-SP2 ) python-louis-2.6.4-6.3.1.x86_64.rpm | Linux |
| SUSE-SU-2017:2570-1(SUSE Linux Enterprise Desktop 12-SP2 ) python3-louis-2.6.4-6.3.1.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234