VYPR

Gnu Fribidi

by Fribidi

Source repositories

CVEs (4)

  • CVE-2022-25310MedSep 6, 2022
    risk 0.00cvss 5.5epss 0.00

    A segmentation fault (SEGV) flaw was found in the Fribidi package and affects the fribidi_remove_bidi_marks() function of the lib/fribidi.c file. This flaw allows an attacker to pass a specially crafted file to Fribidi, leading to a crash and causing a denial of service.

  • CVE-2022-25309MedSep 6, 2022
    risk 0.00cvss 5.5epss 0.00

    A heap-based buffer overflow flaw was found in the Fribidi package and affects the fribidi_cap_rtl_to_unicode() function of the fribidi-char-sets-cap-rtl.c file. This flaw allows an attacker to pass a specially crafted file to the Fribidi application with the '--caprtl' option,…

  • CVE-2022-25308HigSep 6, 2022
    risk 0.00cvss 7.8epss 0.01

    A stack-based buffer overflow flaw was found in the Fribidi package. This flaw allows an attacker to pass a specially crafted file to the Fribidi application, which leads to a possible memory leak or a denial of service.

  • CVE-2010-3444Jan 11, 2011
    risk 0.00cvss epss 0.04

    Buffer overflow in the log2vis_utf8 function in pyfribidi.c in GNU FriBidi 0.19.1, 0.19.2, and possibly other versions, as used in PyFriBidi 0.10.1, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted Arabic UTF-8 string…