Forum: Too Lazy BBS

Who's Online
Recent Visitors
- Amr
  Tue Jan 7 02:11:52 2025
  from Fayetteville, Nc via Telnet
- Amr
  Mon Jan 6 12:40:54 2025
  from Fayetteville, Nc via Telnet
- Stingray
  Mon Jan 6 06:44:19 2025
  from A-Net-Online.Lol via Telnet
- Deuce
  Sun Jan 5 12:58:11 2025
  from Ada, Mi via SSH

System Info

Sysop:	Amessyroom
Location:	Fayetteville, NC
Users:	45
Nodes:	6 (0 / 6)
Uptime:	17:47:32
Calls:	260
Calls today:	1
Files:	871
Messages:	85,000
Posted today:	2

[gentoo-announce] [ GLSA 202409-18 ] liblouis: Multiple Vulnerabilities

From glsamaker@gentoo.org@21:1/5 to All on Sun Sep 22 10:40:01 2024

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 202409-18
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
https://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Severity: Low
Title: liblouis: Multiple Vulnerabilities
Date: September 22, 2024
Bugs: #905298
ID: 202409-18

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
========

Multiple vulnerabilities have been discovered in liblouis, the worst of
which could result in denial of service.

Background
==========

liblouis is an open-source braille translator and back-translator.

Affected packages
=================

Package Vulnerable Unaffected
----------------- ------------ ------------
dev-libs/liblouis < 3.25.0 >= 3.25.0

Description
===========

Multiple vulnerabilities have been discovered in liblouis. Please review
the CVE identifiers referenced below for details.

Impact
======

Please review the referenced CVE identifiers for details.

Workaround
==========

There is no known workaround at this time.

Resolution
==========

All liblouis users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose ">=dev-libs/liblouis-3.25.0"

References
==========

[ 1 ] CVE-2023-26767
https://nvd.nist.gov/vuln/detail/CVE-2023-26767
[ 2 ] CVE-2023-26768
https://nvd.nist.gov/vuln/detail/CVE-2023-26768
[ 3 ] CVE-2023-26769
https://nvd.nist.gov/vuln/detail/CVE-2023-26769

Availability
============

This GLSA and any updates to it are available for viewing at
the Gentoo Security Website:

https://security.gentoo.org/glsa/202409-18

Concerns?
=========

Security is a primary focus of Gentoo Linux and ensuring the
confidentiality and security of our users' machines is of utmost
importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org.

License
=======

Copyright 2024 Gentoo Foundation, Inc; referenced text
belongs to its owner(s).

The contents of this document are licensed under the
Creative Commons - Attribution / Share Alike license.

https://creativecommons.org/licenses/by-sa/2.5
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEpqTA6ABLMxh/aChGFMQkOaVy+9kFAmbv1eIACgkQFMQkOaVy +9mNig//Rf3i3nya4jkgSLw3dVSGzV9yEcaHX8EUMznDDdrfPFkhX9VHN3vxEpHR lNEBCEcWIDb7bAVPotPPorxoFb2c2aKNv/HJD9LQo0VBN3Kr+KuQaFBSJpUUYzqj YeQ7smm8nE0fQtVX1Rbfc8uMLidBjHfBQ0erVAO0Jx0IlnX+yHmO8W8SP2oCVVwI 4gdEi6L4RYHM88U1eaFFXODgvfNjD874PE781oKS7aEmHVh71CKdbbcFJvr6pU91 F7lUIbpG739qFtJE3mYBYWBKu/OPO/eLCjT1CXLsQ986XZ5Su2t6bWQukT5UqgXN 3Rx1fD9IGxUaIRRfIXipfD4rR04yu04qUPtyKZSOffhEykwp1u1AJCQRA68NwDy7 p8q1/YGeIcqgaIUHnGNijEnlVyhVX12bL+++7jcEka4mCScX/YowgZlj+54dBwHG sqruQprj/cU66Ts1NPk2g3pG2nLZWi7CAnJ2NauC8FgBoJj/tSyU8WcqMDWwrJlY Z59WXpt+d6J3sXx2FUcD7WvVnwFUjKHfRzgRWcyihG3sw2KgptP45AtuiMWj0Uf8 rDiJXAY23oRo9qU9Oh2NN6QSeYtEOfJPfH2rfHwM4eYPJulxdWGww0/TFxr5vmPh 9qR5184o5TUuuBAiC4ck9Z0juTFtejEoBi8Z1i2vYsT0Lb2HPXk=
=dYUY
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Who's Online

Recent Visitors

System Info

[gentoo-announce] [ GLSA 202409-18 ] liblouis: Multiple Vulnerabilities