Lucene search

UbuntuUSN-5476-1

HistoryJun 13, 2022 - 12:00 a.m.

Liblouis vulnerabilities

2022-06-1300:00:00

ubuntu.com

liblouis

ubuntu

vulnerabilities

18.04

20.04

21.10

22.04

cve-2022-26981

cve-2022-31783

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.4

Confidence

High

EPSS

0.001

Percentile

42.6%

JSON

Releases

Ubuntu 22.04 LTS
Ubuntu 21.10
Ubuntu 20.04 LTS
Ubuntu 18.04 ESM

Packages

liblouis - Braille translation library - utilities

Details

Han Zheng discovered that Liblouis incorrectly handled certain inputs.
An attacker could possibly use this issue to cause a crash. This issue was
addressed in Ubuntu 21.10 and Ubuntu 22.04 LTS. (CVE-2022-26981)

It was discovered that Liblouis incorrectly handled certain inputs.
An attacker could possibly use this issue to execute arbitrary code
or cause a crash. (CVE-2022-31783)

OSVersionArchitecturePackageVersionFilename
Ubuntu22.04noarchliblouis20< 3.20.0-2ubuntu0.1UNKNOWN
Ubuntu22.04noarchliblouis-bin< 3.20.0-2ubuntu0.1UNKNOWN
Ubuntu22.04noarchliblouis-bin-dbgsym< 3.20.0-2ubuntu0.1UNKNOWN
Ubuntu22.04noarchliblouis-data< 3.20.0-2ubuntu0.1UNKNOWN
Ubuntu22.04noarchliblouis-dev< 3.20.0-2ubuntu0.1UNKNOWN
Ubuntu22.04noarchliblouis20-dbgsym< 3.20.0-2ubuntu0.1UNKNOWN
Ubuntu22.04noarchpython3-louis< 3.20.0-2ubuntu0.1UNKNOWN
Ubuntu21.10noarchliblouis20< 3.18.0-1ubuntu0.2UNKNOWN
Ubuntu21.10noarchliblouis-bin< 3.18.0-1ubuntu0.2UNKNOWN
Ubuntu21.10noarchliblouis-bin-dbgsym< 3.18.0-1ubuntu0.2UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	22.04	noarch	liblouis20	< 3.20.0-2ubuntu0.1	UNKNOWN
Ubuntu	22.04	noarch	liblouis-bin	< 3.20.0-2ubuntu0.1	UNKNOWN
Ubuntu	22.04	noarch	liblouis-bin-dbgsym	< 3.20.0-2ubuntu0.1	UNKNOWN
Ubuntu	22.04	noarch	liblouis-data	< 3.20.0-2ubuntu0.1	UNKNOWN
Ubuntu	22.04	noarch	liblouis-dev	< 3.20.0-2ubuntu0.1	UNKNOWN
Ubuntu	22.04	noarch	liblouis20-dbgsym	< 3.20.0-2ubuntu0.1	UNKNOWN
Ubuntu	22.04	noarch	python3-louis	< 3.20.0-2ubuntu0.1	UNKNOWN
Ubuntu	21.10	noarch	liblouis20	< 3.18.0-1ubuntu0.2	UNKNOWN
Ubuntu	21.10	noarch	liblouis-bin	< 3.18.0-1ubuntu0.2	UNKNOWN
Ubuntu	21.10	noarch	liblouis-bin-dbgsym	< 3.18.0-1ubuntu0.2	UNKNOWN