Preisgabe von Informationen in liblouis
ID: | FEDORA-2018-e470c7f387 |
Distribution: | Fedora |
Plattformen: | Fedora 29 |
Datum: | Di, 2. Oktober 2018, 23:02 |
Referenzen: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17294 |
Applikationen: | liblouis |
Originalnachricht |
|
-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2018-e470c7f387 2018-10-02 19:26:59.108787 -------------------------------------------------------------------------------- Name : liblouis Product : Fedora 29 Version : 3.7.0 Release : 1.fc29 URL : http://liblouis.org Summary : Braille translation and back-translation library Description : Liblouis is an open-source braille translator and back-translator named in honor of Louis Braille. It features support for computer and literary braille, supports contracted and uncontracted translation for many languages and has support for hyphenation. New languages can easily be added through tables that support a rule- or dictionary based approach. Liblouis also supports math braille (Nemeth and Marburg). Liblouis has features to support screen-reading programs. This has led to its use in two open-source screen readers, NVDA and Orca. It is also used in some commercial assistive technology applications for example by ViewPlus. Liblouis is based on the translation routines in the BRLTTY screen reader for Linux. It has, however, gone far beyond these routines. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2018-17294 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1632834 - CVE-2018-17294 liblouis: Stack-based buffer over-read in matchCurrentInput function lou_translateString.c https://bugzilla.redhat.com/show_bug.cgi?id=1632834 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2018-e470c7f387' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org |