(RHSA-2019:4326) Important: fribidi security update

2019-12-19T17:13:51
ID RHSA-2019:4326
Type redhat
Reporter RedHat
Modified 2019-12-19T17:36:51

Description

A library to handle bidirectional scripts (for example Hebrew, Arabic), so that the display is done in the proper way, while the text data itself is always written in logical order.

Security Fix(es):

  • fribidi: buffer overflow in fribidi_get_par_embedding_levels_ex() in lib/fribidi-bidi.c leading to denial of service and possible code execution (CVE-2019-18397)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.