1
PublicDateAtUSN: 2014-12-31
2
Candidate: CVE-2014-8184
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8184
6
https://bugzilla.redhat.com/show_bug.cgi?id=1492701
7
https://github.com/liblouis/liblouis/issues/425
8
https://usn.ubuntu.com/usn/usn-3474-1
10
[stack-based buffer overflow in findTable()]
13
leosilva> according to rhel notes it affects only old versions of liblouis
14
leosilva> before 2.5.4. In our case it affects only trusty.
17
Discovered-by: Raphael Sanchez Prudencio
22
patch: https://github.com/liblouis/liblouis/commit/dc97ef791a4fae9da11592c79f9f79e010596e0c#diff-7ade83431f79d2120c82012aee3b05c9L4524
23
upstream_liblouis: released (2.5.4)
24
precise/esm_liblouis: DNE
25
trusty_liblouis: released (2.5.3-2ubuntu1.2)
26
vivid/ubuntu-core_liblouis: DNE
27
xenial_liblouis: not-affected (2.6.4-2ubuntu0.1)
28
zesty_liblouis: not-affected (3.0.0-3ubuntu0.2)
29
artful_liblouis: not-affected (3.0.0-3ubuntu1)
30
devel_liblouis: not-affected (3.3.0-1)