{"id":"CVE-2023-49991","details":"Espeak-ng 1.52-dev was discovered to contain a Stack Buffer Underflow via the function CountVowelPosition at synthdata.c.","modified":"2026-04-16T04:38:02.307065663Z","published":"2023-12-12T14:15:07.600Z","related":["SUSE-SU-2024:2632-1"],"references":[{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2PZEBWPNKPAYJMIM3AS2RP3FL6FX3HS4/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z5WW6RKHRWLEMCKCQ6UZCXWC5J7UWMUQ/"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/05/msg00050.html"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2PZEBWPNKPAYJMIM3AS2RP3FL6FX3HS4/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Z5WW6RKHRWLEMCKCQ6UZCXWC5J7UWMUQ/"},{"type":"REPORT","url":"https://github.com/espeak-ng/espeak-ng/issues/1825"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/espeak-ng/espeak-ng","events":[{"introduced":"0"},{"last_affected":"4870adfa25b1a32b4361592f1be8a40337c58d6c"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"1.52-dev"}]}}],"versions":["1.46.10","1.46.11","1.46.12","1.46.13","1.46.14","1.46.15","1.46.16","1.46.17","1.46.18","1.46.19","1.46.20","1.46.21","1.46.22","1.46.23","1.46.24","1.46.27","1.46.28","1.46.29","1.46.30","1.46.31","1.46.32","1.46.33","1.46.34","1.46.35","1.46.37","1.46.38","1.46.39","1.46.41","1.46.42","1.46.43","1.46.44","1.46.45","1.46.46","1.46.47","1.46.48","1.46.49","1.46.50","1.46.51","1.46.53","1.47.01","1.47.02","1.47.03","1.47.03b","1.47.03c","1.47.03d","1.47.03e","1.47.03f","1.47.04","1.47.04a","1.47.05","1.47.05a","1.47.06","1.47.06a","1.47.07","1.47.07a","1.47.07b","1.47.07c","1.47.08","1.47.09","1.47.10","1.47.10a","1.47.10b","1.47.11","1.47.11a","1.47.11b","1.47.11c","1.47.11d","1.47.12","1.47.13","1.47.14","1.47.15","1.47.15a","1.47.16","1.47.17","1.48.01","1.48.02","1.48.03","1.48.04","1.48.05","1.48.06","1.48.07","1.48.08","1.48.09","1.48.10","1.48.10a","1.48.11","1.48.12","1.48.13","1.48.14","1.48.15","1.49.1","1.50","1.51","1.52.0"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-49991.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"}]}