lout
| Link | package | bugs open | bugs closed | Wiki | GitHub | web search |
| Description | A lightweight document formatting system |
| Version | 3.42.2-2 [extra] |
Resolved
| Group | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|
| AVG-1934 | 3.40-2 | 3.41-1 | Medium | Fixed | FS#70758 |
| Issue | Group | Severity | Remote | Type | Description |
|---|---|---|---|---|---|
| CVE-2019-19918 | AVG-1934 | Medium | No | Arbitrary code execution | Lout 3.40 has a heap-based buffer overflow in the srcnext() function in z02.c. |
| CVE-2019-19917 | AVG-1934 | Medium | No | Arbitrary code execution | Lout 3.40 has a buffer overflow in the StringQuotedWord() function in z39.c. |