The vulnerability of the ReadClause() function in the Espeak speech synthesiser allows a perpetrator to trigger a service failure.

The vulnerability of the ReadClause function in the Espeak speech synthesiser lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to cause a service failure...

Buffer Overflow

libespeak-ng.so is vulnerable to Buffer Overflow. The vulnerability is caused by the ReadClause function in readclause.c due to not having a bounds check when writing data to buffer. This allows an attacker to craft an input to trigger the overflow, potentially leads to code execution or Denial o...

SUSE CVE-2023-49993

Espeak-ng 1.52-dev was discovered to contain a Buffer Overflow via the function ReadClause at readclause.c...

DEBIAN-CVE-2023-49993

Espeak-ng 1.52-dev was discovered to contain a Buffer Overflow via the function ReadClause at readclause.c...

CVE-2023-49993

Espeak-ng 1.52-dev was discovered to contain a Buffer Overflow via the function ReadClause at readclause.c...

Buffer overflow

Espeak-ng 1.52-dev was discovered to contain a Buffer Overflow via the function ReadClause at readclause.c...

UBUNTU-CVE-2023-49993

Espeak-ng 1.52-dev was discovered to contain a Buffer Overflow via the function ReadClause at readclause.c...

CVE-2023-49993

Espeak-ng 1.52-dev was discovered to contain a Buffer Overflow via the function ReadClause at readclause.c...

CVE-2023-49993

Espeak-ng 1.52-dev was discovered to contain a Buffer Overflow via the function ReadClause at readclause.c...

PT-2023-9304 · Espeak-Ng +6 · Espeak-Ng +6

Name of the Vulnerable Software and Affected Versions: Espeak-ng version 1.52-dev Description: The issue is related to a buffer overflow in the ReadClause function of the Espeak speech synthesizer, which occurs due to the lack of size checking for input data. This can potentially allow an attacke...

eSpeak NG Security Vulnerability

eSpeak NG is an open source software text-to-speech synthesizer from eSpeak NG Open Source. A security vulnerability exists in eSpeak NG version 1.52-dev, which is caused by a buffer overflow in the ReadClause method of the readclause.c file...

CVE-2023-49993

CVE-2023-49993 affects espeak-ng: a Buffer Overflow in ReadClause (readclause.c) for 1.52-dev. Distributions report fixes (e.g., Debian 11: 1.50+dfsg-7+deb11u2; SUSE/openSUSE: SUSE-SU-2024:2632-1). Some Nessus plugins rely on vendor version, but exploitation status is not uniformly confirmed in t...

CVE-2023-49993

Espeak-ng 1.52-dev was discovered to contain a Buffer Overflow via the function ReadClause at readclause.c...

OSV-2022-530 Heap-buffer-overflow in string_decoder_getc_utf_8

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=48589 Crash type: Heap-buffer-overflow READ 1 Crash state: stringdecodergetcutf8 textdecodergetc ReadClause...