Overview

File _patchinfo of Package patchinfo.8769

<patchinfo incident="8769">
  <issue tracker="bnc" id="1097103">VUL-1: CVE-2018-12085: liblouis: stack-based buffer overflow compileTranslationTable.c</issue>
  <issue tracker="bnc" id="1095945">VUL-1: CVE-2018-11577: liblouis: Segmentation fault in logging.c:lou_logPrint()</issue>
  <issue tracker="bnc" id="1095826">VUL-1: CVE-2018-11684: liblouis: stack-based Buffer Overflow in the function includeFile</issue>
  <issue tracker="bnc" id="1095827">VUL-1: CVE-2018-11683: liblouis: stack-based Buffer Overflow in the function parseChars</issue>
  <issue tracker="bnc" id="1095825">VUL-1: CVE-2018-11685: liblouis: stack-based Buffer Overflow in function compileHyphenation</issue>
  <issue tracker="bnc" id="1095189">VUL-1: CVE-2018-11440: liblouis: Stack-based Buffer Overflow in parseChars function in compileTranslationTable.c</issue>
  <issue tracker="cve" id="2018-11684"/>
  <issue tracker="cve" id="2018-11685"/>
  <issue tracker="cve" id="2018-11683"/>
  <issue tracker="cve" id="2018-11440"/>
  <issue tracker="cve" id="2018-11577"/>
  <issue tracker="cve" id="2018-12085"/>
  <category>security</category>
  <rating>moderate</rating>
  <packager>mgorse</packager>
  <description>This update for liblouis fixes the following issues:

Security issues fixed:

- CVE-2018-11440: Fixed a stack-based buffer overflow in the function
  parseChars() in compileTranslationTable.c (bsc#1095189)
- CVE-2018-11577: Fixed a segmentation fault in lou_logPrint in logging.c
  (bsc#1095945)
- CVE-2018-11683: Fixed a stack-based buffer overflow in the function
  parseChars() in compileTranslationTable.c (different vulnerability than
  CVE-2018-11440) (bsc#1095827)
- CVE-2018-11684: Fixed stack-based buffer overflow in the function
  includeFile() in compileTranslationTable.c (bsc#1095826)
- CVE-2018-11685: Fixed a stack-based buffer overflow in the function
  compileHyphenation() in compileTranslationTable.c (bsc#1095825)
- CVE-2018-12085: Fixed a stack-based buffer overflow in the function
  parseChars() in compileTranslationTable.c (different vulnerability than
  CVE-2018-11440) (bsc#1097103)

This update was imported from the SUSE:SLE-12-SP2:Update update project.</description>
  <summary>Security update for liblouis</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places