CVE-2018-7186 Common Vulnerabilities and Exposures

Upstream information

CVE-2018-7186 at MITRE

Description

Leptonica before 1.75.3 does not limit the number of characters in a %s format argument to fscanf or sscanf, which allows remote attackers to cause a denial of service (stack-based buffer overflow) or possibly have unspecified other impact via a long string, as demonstrated by the gplotRead and ptaReadStream functions.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having critical severity.

CVSS v2 Scores
	National Vulnerability Database
Base Score	7.5
Vector	AV:N/AC:L/Au:N/C:P/I:P/A:P
Access Vector	Network
Access Complexity	Low
Authentication	None
Confidentiality Impact	Partial
Integrity Impact	Partial
Availability Impact	Partial

CVSS v3 Scores
	National Vulnerability Database
Base Score	9.8
Vector	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector	Network
Attack Complexity	Low
Privileges Required	None
User Interaction	None
Scope	Unchanged
Confidentiality Impact	High
Integrity Impact	High
Availability Impact	High
CVSSv3 Version	3

SUSE Bugzilla entries: 1081576 [RESOLVED / FIXED], 1081631 [RESOLVED / FIXED]

SUSE Security Advisories:

openSUSE-SU-2018:0615-1

List of released packages

Product(s)	Fixed package version(s)	References
openSUSE Tumbleweed	`leptonica-devel >= 1.80.0-1.9` `leptonica-tools >= 1.80.0-1.9` `liblept5 >= 1.80.0-1.9` `liblept5-32bit >= 1.80.0-1.9`	Patchnames: openSUSE-Tumbleweed-2024-10914

SUSE Timeline for this CVE

CVE page created: Fri Feb 16 19:30:49 2018
CVE page last modified: Sat Sep 7 13:24:44 2024