Описание
Security update for liblouis
This update for liblouis fixes the following issues:
- CVE-2022-26981: fix buffer overrun in compilePassOpcode (bsc#1197085).
- CVE-2022-31783: prevent an invalid memory write in compileRule (bsc#1200120).
Список пакетов
SUSE Enterprise Storage 6
liblouis-data-3.3.0-150000.4.8.1
liblouis-devel-3.3.0-150000.4.8.1
liblouis14-3.3.0-150000.4.8.1
python3-louis-3.3.0-150000.4.8.1
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS
liblouis-data-3.3.0-150000.4.8.1
liblouis-devel-3.3.0-150000.4.8.1
liblouis14-3.3.0-150000.4.8.1
python3-louis-3.3.0-150000.4.8.1
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS
liblouis-data-3.3.0-150000.4.8.1
liblouis-devel-3.3.0-150000.4.8.1
liblouis14-3.3.0-150000.4.8.1
python3-louis-3.3.0-150000.4.8.1
SUSE Linux Enterprise High Performance Computing 15-ESPOS
liblouis-data-3.3.0-150000.4.8.1
liblouis-devel-3.3.0-150000.4.8.1
liblouis14-3.3.0-150000.4.8.1
python3-louis-3.3.0-150000.4.8.1
SUSE Linux Enterprise High Performance Computing 15-LTSS
liblouis-data-3.3.0-150000.4.8.1
liblouis-devel-3.3.0-150000.4.8.1
liblouis14-3.3.0-150000.4.8.1
python3-louis-3.3.0-150000.4.8.1
SUSE Linux Enterprise Server 15 SP1-BCL
liblouis-data-3.3.0-150000.4.8.1
liblouis-devel-3.3.0-150000.4.8.1
liblouis14-3.3.0-150000.4.8.1
python3-louis-3.3.0-150000.4.8.1
SUSE Linux Enterprise Server 15 SP1-LTSS
liblouis-data-3.3.0-150000.4.8.1
liblouis-devel-3.3.0-150000.4.8.1
liblouis14-3.3.0-150000.4.8.1
python3-louis-3.3.0-150000.4.8.1
SUSE Linux Enterprise Server 15-LTSS
liblouis-data-3.3.0-150000.4.8.1
liblouis-devel-3.3.0-150000.4.8.1
liblouis14-3.3.0-150000.4.8.1
python3-louis-3.3.0-150000.4.8.1
SUSE Linux Enterprise Server for SAP Applications 15
liblouis-data-3.3.0-150000.4.8.1
liblouis-devel-3.3.0-150000.4.8.1
liblouis14-3.3.0-150000.4.8.1
python3-louis-3.3.0-150000.4.8.1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
liblouis-data-3.3.0-150000.4.8.1
liblouis-devel-3.3.0-150000.4.8.1
liblouis14-3.3.0-150000.4.8.1
python3-louis-3.3.0-150000.4.8.1
openSUSE Leap 15.3
liblouis14-3.3.0-150000.4.8.1
openSUSE Leap 15.4
liblouis14-3.3.0-150000.4.8.1
Ссылки
- Link for SUSE-SU-2022:2252-1
- E-Mail link for SUSE-SU-2022:2252-1
- SUSE Security Ratings
- SUSE Bug 1130813
- SUSE Bug 1197085
- SUSE Bug 1200120
- SUSE CVE CVE-2022-26981 page
- SUSE CVE CVE-2022-31783 page
Описание
Liblouis through 3.21.0 has a buffer overflow in compilePassOpcode in compileTranslationTable.c (called, indirectly, by tools/lou_checktable.c).
Затронутые продукты
SUSE Enterprise Storage 6:liblouis-data-3.3.0-150000.4.8.1
SUSE Enterprise Storage 6:liblouis-devel-3.3.0-150000.4.8.1
SUSE Enterprise Storage 6:liblouis14-3.3.0-150000.4.8.1
SUSE Enterprise Storage 6:python3-louis-3.3.0-150000.4.8.1
Ссылки
- CVE-2022-26981
- SUSE Bug 1197085
Описание
Liblouis 3.21.0 has an out-of-bounds write in compileRule in compileTranslationTable.c, as demonstrated by lou_trace.
Затронутые продукты
SUSE Enterprise Storage 6:liblouis-data-3.3.0-150000.4.8.1
SUSE Enterprise Storage 6:liblouis-devel-3.3.0-150000.4.8.1
SUSE Enterprise Storage 6:liblouis14-3.3.0-150000.4.8.1
SUSE Enterprise Storage 6:python3-louis-3.3.0-150000.4.8.1
Ссылки
- CVE-2022-31783
- SUSE Bug 1200120