Christian Egli

2 exploits Active since Sep 2018
CVE-2018-17294 WRITEUP MEDIUM WRITEUP
liblouis < 3.7.0 - Denial of Service via Out-of-bounds Read in matchCurrentInput
The matchCurrentInput function inside lou_translateString.c of Liblouis prior to 3.7 does not check the input string's length, allowing attackers to cause a denial of service (application crash via out-of-bounds read) by crafting an input file with certain translation dictionaries.
CVSS 6.5
CVE-2022-31783 WRITEUP MEDIUM WRITEUP
Liblouis 3.21.0 - Out-of-bounds Write in compileTranslationTable.c
Liblouis 3.21.0 has an out-of-bounds write in compileRule in compileTranslationTable.c, as demonstrated by lou_trace.
CVSS 5.5