CVE-2014-8184
published 2019-08-02CVE-2014-8184: A vulnerability was found in liblouis, versions 2.5.x before 2.5.4. A stack-based buffer overflow was found in findTable() in liblouis. An attacker could…
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
A vulnerability was found in liblouis, versions 2.5.x before 2.5.4. A stack-based buffer overflow was found in findTable() in liblouis. An attacker could create a malicious file that would cause applications that use liblouis (such as Orca) to crash, or potentially execute arbitrary code when opened.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | liblouis | < liblouis 2.6.2-1 (bookworm) | liblouis 2.6.2-1 (bookworm) |
| liblouis | liblouis | — | — |
| liblouis | liblouis | >= 0 < 2.6.2-1 | 2.6.2-1 |
| liblouis | liblouis | >= 0 < 2.6.2-1 | 2.6.2-1 |
| liblouis | liblouis | >= 0 < 2.6.2-1 | 2.6.2-1 |
| liblouis | liblouis | >= 0 < 2.6.2-1 | 2.6.2-1 |
| liblouis | liblouis | >= 2.5.0 < 2.5.4 | 2.5.4 |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv7.8HIGH