==========================================================================
Ubuntu Security Notice USN-3474-1
November 06, 2017
liblouis vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
– Ubuntu 14.04 LTS
Summary:
Liblouis could be made to crash or run programs as your login if it
opened a specially crafted file.
Software Description:
– liblouis: Braille translation library – utilities
Details:
Raphael Sanchez Prudencio discovered that Liblouis incorrectly handled
certain files. If a user were tricked into opening a crafted file, an
attacker could possibly use this to cause a denial of service or
potentially execute arbitrary code.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 14.04 LTS:
liblouis-bin 2.5.3-2ubuntu1.2
liblouis2 2.5.3-2ubuntu1.2
In general, a standard system update will make all the necessary
changes.
References:
https://www.ubuntu.com/usn/usn-3474-1
CVE-2014-8184
Package Information:
https://launchpad.net/ubuntu/+source/liblouis/2.5.3-2ubuntu1.2
—–BEGIN PGP SIGNATURE—–
Version: GnuPG v2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=G8/1
—–END PGP SIGNATURE—–
—