StarlingX

[Debian] High CVE: CVE-2022-25308/CVE-2022-25309/CVE-2022-25310: fribidi: multiple CVEs

Bug #2021536 reported by Yue Tao on 2023-05-30

256

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	StarlingX	Fix Released	High	hqbai

Bug Description

CVE-2022-25308: https://nvd.nist.gov/vuln/detail/CVE-2022-25308

A stack-based buffer overflow flaw was found in the Fribidi package. This flaw allows an attacker to pass a specially crafted file to the Fribidi application, which leads to a possible memory leak or a denial of service.

CVE-2022-25309: https://nvd.nist.gov/vuln/detail/CVE-2022-25309

A heap-based buffer overflow flaw was found in the Fribidi package and affects the fribidi_cap_rtl_to_unicode() function of the fribidi-char-sets-cap-rtl.c file. This flaw allows an attacker to pass a specially crafted file to the Fribidi application with the '--caprtl' option, leading to a crash and causing a denial of service.

CVE-2022-25310: https://nvd.nist.gov/vuln/detail/CVE-2022-25310

A segmentation fault (SEGV) flaw was found in the Fribidi package and affects the fribidi_remove_bidi_marks() function of the lib/fribidi.c file. This flaw allows an attacker to pass a specially crafted file to Fribidi, leading to a crash and causing a denial of service.

Base Score: High

References:

https://security-tracker.debian.org/tracker/CVE-2022-25308

https://security-tracker.debian.org/tracker/CVE-2022-25309

https://security-tracker.debian.org/tracker/CVE-2022-25310

['libfribidi0_1.0.8-2_amd64.deb===>libfribidi0_1.0.8-2+deb11u1_amd64.deb']

Tags:

CVE References

Yue Tao (wrytao) on 2023-05-30

tags:	added: stx.9.0 stx.se
tags:	added: stx.security removed: stx.se

hqbai (hbai) on 2023-06-13

Changed in starlingx:
assignee:	nobody → hqbai (hbai)

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2023-06-16: Fix proposed to tools (master)

Fix proposed to branch: master
Review: https://review.opendev.org/c/starlingx/tools/+/886237

Changed in starlingx:
status:	Triaged → In Progress

Revision history for this message

Ghada Khalil (gkhalil) wrote on 2023-08-21:

Marking as Fix Released. https://review.opendev.org/c/starlingx/tools/+/886237 was merged on June 24.

Changed in starlingx:
status:	In Progress → Fix Released

Report a bug

This report contains Public Security information

Everyone can see this security related information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.