Описание
A heap-based buffer overflow flaw was found in the Fribidi package and affects the fribidi_cap_rtl_to_unicode() function of the fribidi-char-sets-cap-rtl.c file. This flaw allows an attacker to pass a specially crafted file to the Fribidi application with the '--caprtl' option, leading to a crash and causing a denial of service.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 0.19.7-2ubuntu0.1 |
| devel | released | 1.0.8-2ubuntu3.1 |
| esm-infra-legacy/trusty | ignored | end of standard support |
| esm-infra/bionic | not-affected | 0.19.7-2ubuntu0.1 |
| esm-infra/focal | not-affected | 1.0.8-2ubuntu0.1 |
| esm-infra/xenial | released | 0.19.7-1ubuntu0.1~esm1 |
| focal | released | 1.0.8-2ubuntu0.1 |
| impish | released | 1.0.8-2ubuntu2.1 |
| jammy | released | 1.0.8-2ubuntu3.1 |
| trusty | ignored | end of standard support |
Показывать по
Ссылки на источники
EPSS
5.5 Medium
CVSS3
Связанные уязвимости
A heap-based buffer overflow flaw was found in the Fribidi package and affects the fribidi_cap_rtl_to_unicode() function of the fribidi-char-sets-cap-rtl.c file. This flaw allows an attacker to pass a specially crafted file to the Fribidi application with the '--caprtl' option, leading to a crash and causing a denial of service.
A heap-based buffer overflow flaw was found in the Fribidi package and affects the fribidi_cap_rtl_to_unicode() function of the fribidi-char-sets-cap-rtl.c file. This flaw allows an attacker to pass a specially crafted file to the Fribidi application with the '--caprtl' option, leading to a crash and causing a denial of service.
A heap-based buffer overflow flaw was found in the Fribidi package and ...
A heap-based buffer overflow flaw was found in the Fribidi package and affects the fribidi_cap_rtl_to_unicode() function of the fribidi-char-sets-cap-rtl.c file. This flaw allows an attacker to pass a specially crafted file to the Fribidi application with the '--caprtl' option, leading to a crash and causing a denial of service.
EPSS
5.5 Medium
CVSS3