31 matches found
JLSEC-2025-172 A segmentation fault (SEGV) flaw was found in the Fribidi package and affects the fribidi_remove_bid...
A segmentation fault SEGV flaw was found in the Fribidi package and affects the fribidiremovebidimarks function of the lib/fribidi.c file. This flaw allows an attacker to pass a specially crafted file to Fribidi, leading to a crash and causing a denial of service...
JLSEC-2025-170 A stack-based buffer overflow flaw was found in the Fribidi package
A stack-based buffer overflow flaw was found in the Fribidi package. This flaw allows an attacker to pass a specially crafted file to the Fribidi application, which leads to a possible memory leak or a denial of service...
EUVD-2022-29992
Malicious code in bioql PyPI...
EUVD-2022-29994
Malicious code in bioql PyPI...
Fedora 37 : fribidi (2022-ec66fe614d)
The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-ec66fe614d advisory. Automatic update for fribidi-1.0.11-3.fc37. Changelog Fri Apr 1 2022 Akira TAGOH - 1.0.11-3 - Fix security issues, CVE-2022-25308, CVE-2022-25309,...
CentOS 9 : fribidi-1.0.10-6.el9.2
The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the fribidi-1.0.10-6.el9.2 build changelog. - A stack-based buffer overflow flaw was found in the Fribidi package. This flaw allows an attacker to pass a specially crafted file to...
Medium: fribidi
Issue Overview: A heap-based buffer overflow flaw was found in the Fribidi package and affects the fribidicaprtltounicode function of the fribidi-char-sets-cap-rtl.c file. This flaw allows an attacker to pass a specially crafted file to the Fribidi application with the --caprtl option, leading to...
Medium: fribidi
Issue Overview: A stack-based buffer overflow flaw was found in the Fribidi package. This flaw allows an attacker to pass a specially crafted file to the Fribidi application, which leads to a possible memory leak or a denial of service. CVE-2022-25308 A heap-based buffer overflow flaw was found i...
Amazon Linux 2023 : fribidi, fribidi-devel (ALAS2023-2023-069)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-069 advisory. A stack-based buffer overflow flaw was found in the Fribidi package. This flaw allows an attacker to pass a specially crafted file to the Fribidi application, which leads to a possible memory...
Oracle Linux 9 : fribidi (ELSA-2022-8011)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-8011 advisory. 1.0.10-6.el9.2 - Security fixes for CVE-2022-25308, CVE-2022-25309, CVE-2022-25310 Resolves: rhbz2050086, rhbz2050069, rhbz2050063 Tenable has extracte...
AlmaLinux 9 : fribidi (ALSA-2022:8011)
The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:8011 advisory. - A stack-based buffer overflow flaw was found in the Fribidi package. This flaw allows an attacker to pass a specially crafted file to the Fribidi...
Oracle Linux 8 : fribidi (ELSA-2022-7514)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-7514 advisory. - Fix security issues CVE-2022-25308, CVE-2022-25309, CVE-2022-25310. Resolves: rhbz2050085, rhbz2050068, rhbz2050062 Tenable has extracted the precedi...
Amazon Linux 2022 : fribidi, fribidi-devel (ALAS2022-2022-200)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-200 advisory. A stack-based buffer overflow flaw was found in the Fribidi package. This flaw allows an attacker to pass a specially crafted file to the Fribidi application, which leads to a possible memory...
CVE-2022-25310 affecting package fribidi for versions less than 1.0.12-1
CVE-2022-25310 affecting package fribidi for versions less than 1.0.12-1. An upgraded version of the package is available that resolves this issue...
CVE-2022-25308 affecting package fribidi for versions less than 1.0.12-1
CVE-2022-25308 affecting package fribidi for versions less than 1.0.12-1. An upgraded version of the package is available that resolves this issue...
CVE-2022-25309 affecting package fribidi for versions less than 1.0.12-1
CVE-2022-25309 affecting package fribidi for versions less than 1.0.12-1. An upgraded version of the package is available that resolves this issue...
A stack-based buffer overflow flaw was found in the Fribidi package. This flaw allows an attacker to pass a specially crafted file to the Fribidi application which leads to a possible memory leak or a denial of service.
...
CVE-2022-25308
A stack-based buffer overflow flaw was found in the Fribidi package. This flaw allows an attacker to pass a specially crafted file to the Fribidi application, which leads to a possible memory leak or a denial of service...
AZL-10887 CVE-2022-25309 affecting package fribidi for versions less than 1.0.12-1
A heap-based buffer overflow flaw was found in the Fribidi package and affects the fribidicaprtltounicode function of the fribidi-char-sets-cap-rtl.c file. This flaw allows an attacker to pass a specially crafted file to the Fribidi application with the '--caprtl' option, leading to a crash and...
CVE-2022-25310
A segmentation fault SEGV flaw was found in the Fribidi package and affects the fribidiremovebidimarks function of the lib/fribidi.c file. This flaw allows an attacker to pass a specially crafted file to Fribidi, leading to a crash and causing a denial of service...