CVE-2022-26981
published 2022-03-13CVE-2022-26981: Liblouis through 3.21.0 has a buffer overflow in compilePassOpcode in compileTranslationTable.c (called, indirectly, by tools/lou_checktable.c).
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
Liblouis through 3.21.0 has a buffer overflow in compilePassOpcode in compileTranslationTable.c (called, indirectly, by tools/lou_checktable.c).
Affected
18 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios_15.6_and_ipados | — | — |
| apple | ipados | < 15.6 | 15.6 |
| apple | iphone_os | < 15.6 | 15.6 |
| apple | macos | >= 12.0 < 12.5 | 12.5 |
| apple | macos_monterey | — | — |
| apple | tvos | < 15.6 | 15.6 |
| apple | tvos | — | — |
| apple | watchos | < 8.7 | 8.7 |
| apple | watchos | — | — |
| debian | liblouis | < liblouis 3.22.0-1 (bookworm) | liblouis 3.22.0-1 (bookworm) |
| fedoraproject | fedora | — | — |
| liblouis | liblouis | <= 3.21.0 | — |
| liblouis | liblouis | >= 0 < 3.22.0-1 | 3.22.0-1 |
| liblouis | liblouis | >= 0 < 3.22.0-1 | 3.22.0-1 |
| liblouis | liblouis | >= 0 < 3.22.0-1 | 3.22.0-1 |
| liblouis | liblouis | >= 0 < 3.5.0-1ubuntu0.4 | 3.5.0-1ubuntu0.4 |
| liblouis | liblouis | >= 0 < 3.12.0-3ubuntu0.1 | 3.12.0-3ubuntu0.1 |
| liblouis | liblouis | >= 0 < 3.20.0-2ubuntu0.1 | 3.20.0-2ubuntu0.1 |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv7.8HIGH