CVE-2022-25310

Summary

A segmentation fault (SEGV) flaw was found in the Fribidi package and affects the fribidi_remove_bidi_marks() function of the lib/fribidi.c file. This flaw allows an attacker to pass a specially crafted file to Fribidi, leading to a crash and causing a denial of service.

Affected Software

VendorProductVersion RangeStatus
n/afribidiFixed in v1.0.12affected

Weaknesses

  • CWE-119: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer.

ADP Enrichment

CVE Program Container

Additional References

References