vulnerability

Amazon Linux AMI 2: CVE-2018-12085: Security patch for geronimo-jaxrpc, liblouis (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:P/I:P/A:P)	Jun 9, 2018	Oct 28, 2020	Feb 21, 2024

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

Jun 9, 2018

Added

Oct 28, 2020

Modified

Feb 21, 2024

Description

Liblouis 3.6.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c, a different vulnerability than CVE-2018-11440.

Solution(s)

amazon-linux-ami-2-upgrade-geronimo-jaxrpcamazon-linux-ami-2-upgrade-geronimo-jaxrpc-javadocamazon-linux-ami-2-upgrade-liblouisamazon-linux-ami-2-upgrade-liblouis-debuginfoamazon-linux-ami-2-upgrade-liblouis-develamazon-linux-ami-2-upgrade-liblouis-docamazon-linux-ami-2-upgrade-liblouis-utilsamazon-linux-ami-2-upgrade-python2-louisamazon-linux-ami-2-upgrade-python3-louis

References

AMAZON-AL2/ALAS-2020-1524
AMAZON-AL2/ALAS-2023-1941
AMAZON-AL2/ALAS-2024-2471
CVE-2018-12085
https://attackerkb.com/topics/CVE-2018-12085

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today