Lucene search

Veracode Vulnerability DatabaseVERACODE:44779

HistoryDec 21, 2023 - 11:36 a.m.

Buffer Overflow

2023-12-2111:36:44

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

espeak-ng

buffer overflow

removeending

dictionary.c

denial of service

vulnerability

5.3 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

6.8 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.2%

JSON

Espeak-ng is vulnerable to Buffer Overflow. The vulnerability is caused due to missing validation for word length in the RemoveEnding function within dictionary.c., which can result in Denial of Service.

CPENameOperatorVersion
libespeak-ng.sole1.1.51
espeak-ng:sideq1.50+dfsg-7
libespeak-ng.sole1.1.51
espeak-ng:sideq1.50+dfsg-7

Name	Operator	Version
libespeak-ng.so	le	1.1.51
espeak-ng:sid	eq	1.50+dfsg-7
libespeak-ng.so	le	1.1.51
espeak-ng:sid	eq	1.50+dfsg-7

References

bugzilla.suse.com/show_bug.cgi?id=1218007

github.com/espeak-ng/espeak-ng/issues/1827

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2PZEBWPNKPAYJMIM3AS2RP3FL6FX3HS4/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z5WW6RKHRWLEMCKCQ6UZCXWC5J7UWMUQ/