Test ID:	1.3.6.1.4.1.25623.1.0.812339
Category:	Red Hat Local Security Checks
Title:	RedHat Update for liblouis RHSA-2017:3384-01
Summary:	The remote host is missing an update for the 'liblouis'; package(s) announced via the referenced advisory.
Description:	Summary: The remote host is missing an update for the 'liblouis' package(s) announced via the referenced advisory. Vulnerability Insight: Liblouis is an open source braille translator and back-translator named in honor of Louis Braille. It features support for computer and literary braille, supports contracted and uncontracted translation for many languages and has support for hyphenation. New languages can easily be added through tables that support a rule or dictionary based approach. Liblouis also supports math braille (Nemeth and Marburg). Security Fix(es): * A missing fix for one stack-based buffer overflow in findTable() for CVE-2014-8184 was discovered. An attacker could cause denial of service or potentially allow arbitrary code execution. (CVE-2017-15101) Red Hat would like to thank Samuel Thibault for reporting this issue. Affected Software/OS: liblouis on Red Hat Enterprise Linux Server (v. 7) Solution: Please Install the Updated Packages. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-15101 RedHat Security Advisories: RHSA-2017:3384 https://access.redhat.com/errata/RHSA-2017:3384 Common Vulnerability Exposure (CVE) ID: CVE-2014-8184 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-8184 https://github.com/liblouis/liblouis/issues/425
Copyright	Copyright (C) 2017 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.