Segmentation Fault in Fribidi Package from FRIBIDI
CVE-2022-25310
5.5MEDIUM
What is CVE-2022-25310?
A segmentation fault flaw exists in the Fribidi package that impacts the fribidi_remove_bidi_marks() function. This vulnerability can be exploited by an attacker with the ability to pass specially crafted files to the Fribidi library. Such an exploit can lead to application crashes, potentially resulting in a denial of service condition. Organizations using this package should review their implementations and apply mitigations where necessary.
Affected Version(s)
fribidi Fixed in v1.0.12