CVE-2022-31783

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2022-31783

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-31783.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2022-31783

Downstream

DEBIAN-CVE-2022-31783

SUSE-SU-2022:2184-1

SUSE-SU-2022:2252-1

SUSE-SU-2022:2298-1

UBUNTU-CVE-2022-31783

USN-5476-1

openSUSE-SU-2024:12125-1

Related

Published

2022-06-02T14:15:58.050Z

Modified

2026-03-13T07:52:08.804763Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

Liblouis 3.21.0 has an out-of-bounds write in compileRule in compileTranslationTable.c, as demonstrated by lou_trace.

References

Affected packages

Git / github.com/liblouis/liblouis

Affected ranges

Type

GIT

Repo

https://github.com/liblouis/liblouis

Events

Introduced

Last affected

c05f3bfb0990434bd12bf6697d16ed943f2203c2

Fixed

ff747ec5e1ac54d54194846f6fe5bfc689192a85

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "3.21.0"
        }
    ]
}

Affected versions

v2.*

v2.6.0

v2.6.1

v2.6.2

v2.6.3

v2.6.3-1

v2.6.4

v2.6.5

v3.*

v3.0.0

v3.0.0.alpha1

v3.0.0.alpha1-1

v3.1.0

v3.10.0

v3.11.0

v3.12.0

v3.13.0

v3.14.0

v3.15.0

v3.16.0

v3.16.1

v3.17.0

v3.18.0

v3.19.0

v3.2.0

v3.20.0

v3.21.0

v3.3.0

v3.4.0

v3.5.0

v3.6.0

v3.7.0

v3.8.0

v3.9.0

Database specific

unresolved_ranges

[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "36"
            }
        ]
    }
]

vanir_signatures

[
    {
        "signature_type": "Line",
        "deprecated": false,
        "id": "CVE-2022-31783-da8f0a84",
        "target": {
            "file": "liblouis/compileTranslationTable.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "49859477439080997785558518495698685847",
                "179298313379625904393693350704021363273",
                "89767169195622003076537929872176395622",
                "312349082252446945969197010117568802625",
                "188613074001533975599541015701003476160",
                "208979249903842974032434001763539491205",
                "178839693535655317904149390147491874294",
                "189921774020654828726781663968381691383",
                "328912271670960318438664001367030771610"
            ]
        },
        "signature_version": "v1",
        "source": "https://github.com/liblouis/liblouis/commit/ff747ec5e1ac54d54194846f6fe5bfc689192a85"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "id": "CVE-2022-31783-fbb1c021",
        "target": {
            "file": "liblouis/compileTranslationTable.c",
            "function": "compileRule"
        },
        "digest": {
            "length": 38347.0,
            "function_hash": "202101985917549454760047101261985533814"
        },
        "signature_version": "v1",
        "source": "https://github.com/liblouis/liblouis/commit/ff747ec5e1ac54d54194846f6fe5bfc689192a85"
    }
]

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-31783.json"