Bugzilla – Bug 1209432
VUL-0: CVE-2023-26769: python-louis,python3-louis,liblouis: Buffer Overflow vulnerability found in Liblouis Lou_Trace resolveSubtable()
Last modified: 2025-03-20 18:49:10 UTC
CVE-2023-26769 Buffer Overflow vulnerability found in Liblouis Lou_Trace v.3.24.0 allows a remote attacker to cause a denial of service via the resolveSubtable function at compileTranslationTabel.c. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-26769 https://www.cve.org/CVERecord?id=CVE-2023-26769 http://loutrace.com https://github.com/liblouis/liblouis https://github.com/liblouis/liblouis/pull/1300
Not affected (does not contain dataPath): - SUSE:SLE-11-SP1:Update/liblouis 1.7.0 - SUSE:SLE-11-SP1:Update/python-louis 1.7.0 Affected: - SUSE:SLE-12:Update/python3-louis 2.5.4 - SUSE:SLE-12-SP2:Update/liblouis 2.6.4 - SUSE:SLE-12-SP2:Update/python-louis 2.6.4 - SUSE:SLE-12-SP2:Update/python3-louis 2.6.4 - SUSE:SLE-15-SP2:Update/liblouis 3.11.0 - SUSE:SLE-15-SP4:Update/liblouis 3.20.0 - SUSE:SLE-15:Update/liblouis 3.3.0 - openSUSE:Factory/liblouis 3.24.0
This is an autogenerated message for OBS integration: This bug (1209432) was mentioned in https://build.opensuse.org/request/show/1073189 Factory / liblouis
SUSE-SU-2023:1773-1: An update that solves two vulnerabilities can now be installed. Category: security (important) Bug References: 1209429, 1209432 CVE References: CVE-2023-26767, CVE-2023-26769 Sources used: openSUSE Leap 15.4 (src): liblouis-3.11.0-150200.3.8.1 SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (src): liblouis-3.11.0-150200.3.8.1 SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 (src): liblouis-3.11.0-150200.3.8.1 SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (src): liblouis-3.11.0-150200.3.8.1 SUSE Linux Enterprise Real Time 15 SP3 (src): liblouis-3.11.0-150200.3.8.1 SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (src): liblouis-3.11.0-150200.3.8.1 SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (src): liblouis-3.11.0-150200.3.8.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2 (src): liblouis-3.11.0-150200.3.8.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3 (src): liblouis-3.11.0-150200.3.8.1 SUSE Enterprise Storage 7.1 (src): liblouis-3.11.0-150200.3.8.1 SUSE Enterprise Storage 7 (src): liblouis-3.11.0-150200.3.8.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2023:1772-1: An update that solves two vulnerabilities can now be installed. Category: security (important) Bug References: 1209429, 1209432 CVE References: CVE-2023-26767, CVE-2023-26769 Sources used: openSUSE Leap 15.4 (src): liblouis-3.3.0-150000.4.13.1 SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1 (src): liblouis-3.3.0-150000.4.13.1 SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1 (src): liblouis-3.3.0-150000.4.13.1 SUSE Linux Enterprise Server for SAP Applications 15 SP1 (src): liblouis-3.3.0-150000.4.13.1 SUSE CaaS Platform 4.0 (src): liblouis-3.3.0-150000.4.13.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2023:1771-1: An update that solves two vulnerabilities can now be installed. Category: security (important) Bug References: 1209429, 1209432 CVE References: CVE-2023-26767, CVE-2023-26769 Sources used: openSUSE Leap 15.4 (src): liblouis-3.20.0-150400.3.8.1 Desktop Applications Module 15-SP4 (src): liblouis-3.20.0-150400.3.8.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Reassign to the security team for all requests have been accepted.