CVE-2022-31783

Publication date 2 June 2022

Last updated 25 August 2025

Ubuntu priority

Why this priority?

Cvss 3 Severity Score

Score breakdown

Description

Liblouis 3.21.0 has an out-of-bounds write in compileRule in compileTranslationTable.c, as demonstrated by lou_trace.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
liblouis	22.04 LTS jammy	Fixed 3.20.0-2ubuntu0.1
	21.10 impish	Fixed 3.18.0-1ubuntu0.2
	20.04 LTS focal	Fixed 3.12.0-3ubuntu0.1
	18.04 LTS bionic	Fixed 3.5.0-1ubuntu0.4
	16.04 LTS xenial	Not affected

Severity score breakdown

Parameter	Value
Base score	5.5 · Medium
Attack vector	Local
Attack complexity	Low
Privileges required	None
User interaction	Required
Scope	Unchanged
Confidentiality	None
Integrity impact	None
Availability impact	High
Vector	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

References

Related Ubuntu Security Notices (USN)

USN-5476-1
Liblouis vulnerabilities
13 June 2022

Other references