Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-26767HistoryMar 16, 2023 - 3:15 p.m.
CVE-2023-26767
2023-03-1615:15:10
Debian Security Bug Tracker
security-tracker.debian.org
14
cve-2023-26767
buffer overflow
liblouis v.3.24.0
denial of service
remote attacker
lou_logfile function
logginc.c
unix
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.002
Percentile
54.5%
Buffer Overflow vulnerability found in Liblouis v.3.24.0 allows a remote attacker to cause a denial of service via the lou_logFile function at logginc.c endpoint.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | liblouis | <= 3.24.0-1 | liblouis_3.24.0-1_all.deb |
| Debian | 11 | all | liblouis | <= 3.16.0-1 | liblouis_3.16.0-1_all.deb |
| Debian | 999 | all | liblouis | < 3.24.0-2 | liblouis_3.24.0-2_all.deb |
| Debian | 13 | all | liblouis | < 3.24.0-2 | liblouis_3.24.0-2_all.deb |
Related
cbl_mariner
cbl_mariner
CVE-2023-26767 affecting package liblouis for versions less than 3.26.0-1
2023-08-03 02:23:40
veracode
veracode
Denial Of Service (DoS)
2023-03-23 10:49:59
cve
cve
CVE-2023-26767
2023-03-16 15:15:10
prion
prion
Buffer overflow
2023-03-16 15:15:00
ubuntucve
ubuntucve
CVE-2023-26767
2023-03-16 00:00:00
redhatcve
redhatcve
CVE-2023-26767
2023-03-24 13:07:42
osv
osv
CVE-2023-26767
2023-03-16 15:15:10
Moderate: liblouis security update
2023-11-07 00:00:00
liblouis vulnerabilities
2023-04-04 10:51:32
cvelist
cvelist
CVE-2023-26767
2023-03-16 00:00:00
nvd
nvd
CVE-2023-26767
2023-03-16 15:15:10
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:1773-1)
2023-04-05 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:1772-1)
2023-04-05 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:1824-1)
2023-05-05 00:00:00
nessus
nessus
redos
redos
ROS-20230411-02
2023-04-11 00:00:00
oraclelinux
oraclelinux
liblouis security update
2023-11-11 00:00:00
amazon
amazon
Important: liblouis
2023-04-13 19:28:00
ubuntu
ubuntu
Libloius vulnerabilities
2023-05-23 00:00:00
Liblouis vulnerabilities
2023-04-04 00:00:00
almalinux
almalinux
Moderate: liblouis security update
2023-11-07 00:00:00
redhat
redhat
(RHSA-2023:6385) Moderate: liblouis security update
2023-11-07 06:04:09
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.002
Percentile
54.5%
Related for DEBIANCVE:CVE-2023-26767