Martin Hedenfalk · Libconfuse · CVE-2018-14447
**Name of the Vulnerable Software and Affected Versions**
libConfuse version 3.2.1
**Description**
The issue is related to an out-of-bounds read in the `trim whitespace` function in `lexer.l` of libConfuse.
**Recommendations**
For libConfuse version 3.2.1, at the moment, there is no information about a newer version that contains a fix for this vulnerability.