The vulnerability of the SetUpPhonemeTable() function in the Espeak speech synthesiser allows a hacker to trigger a service failure.

The vulnerability of the SetUpPhonemeTable function in the Espeak speech synthesiser is related to buffer overflow attacks. Exploiting this vulnerability could allow an attacker to cause a system failure...

Espeak-ng 1.52-dev was discovered to contain a buffer-overflow via the function SetUpPhonemeTable at synthdata.c.

...

SUSE CVE-2023-49990

Espeak-ng 1.52-dev was discovered to contain a buffer-overflow via the function SetUpPhonemeTable at synthdata.c...

AZL-34674 CVE-2023-49990 affecting package espeak-ng for versions less than 1.51.1-1

Espeak-ng 1.52-dev was discovered to contain a buffer-overflow via the function SetUpPhonemeTable at synthdata.c...

CVE-2023-49990

Espeak-ng 1.52-dev was discovered to contain a buffer-overflow via the function SetUpPhonemeTable at synthdata.c...

Buffer overflow

Espeak-ng 1.52-dev was discovered to contain a buffer-overflow via the function SetUpPhonemeTable at synthdata.c...

CVE-2023-49990

Espeak-ng 1.52-dev was discovered to contain a buffer-overflow via the function SetUpPhonemeTable at synthdata.c...

CVE-2023-49990

Espeak-ng 1.52-dev was discovered to contain a buffer-overflow via the function SetUpPhonemeTable at synthdata.c...

CVE-2023-49990

Espeak-ng 1.52-dev was discovered to contain a buffer-overflow via the function SetUpPhonemeTable at synthdata.c...

CVE-2023-49990

CVE-2023-49990 affects espeak-ng, where a buffer overflow is introduced via SetUpPhonemeTable in synthdata.c for the 1.52-dev release. The connected advisories confirm this issue across multiple distributions and note that fixes have been released: Debian lists a patched version (1.50+dfsg-7+deb1...

OSV-2021-1041 Global-buffer-overflow in SetUpPhonemeTable

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=36412 Crash type: Global-buffer-overflow READ 4 Crash state: SetUpPhonemeTable SelectPhonemeTable TranslateWord2...