CVE-2017-13738

EUVD-2017-5255
There is an illegal address access in the _lou_getALine function in compileTranslationTable.c:346 in Liblouis 3.2.0.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.8 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 59%
Affected Products (NVD)
VendorProductVersion
liblouisliblouis
3.2.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
liblouis
bookworm
3.24.0-1
fixed
bullseye
3.16.0-1
fixed
jessie
no-dsa
sid
3.31.0-2
fixed
trixie
3.31.0-2
fixed
wheezy
no-dsa
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
liblouis
trusty
Fixed 2.5.3-2ubuntu1.1
released
xenial
Fixed 2.6.4-2ubuntu0.1
released
zesty
Fixed 3.0.0-3ubuntu0.2
released
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/100607
https://access.redhat.com/errata/RHSA-2017:3111
https://bugzilla.redhat.com/show_bug.cgi?id=1484297
http://www.securityfocus.com/bid/100607
https://access.redhat.com/errata/RHSA-2017:3111
https://bugzilla.redhat.com/show_bug.cgi?id=1484297