fribidi 0.19.7-2ubuntu0.1 source package in Ubuntu
Changelog
fribidi (0.19.7-2ubuntu0.1) bionic-security; urgency=medium
* SECURITY UPDATE: Incorrect length checking in processing of line input
could result in a stack buffer overflow, resulting in a crash or potential
code execution.
- debian/patches/CVE-2022-25308.patch: add checking to length of string
buffer before processing in bin/fribidi-main.c
- CVE-2022-25308
* SECURITY UPDATE: Insufficient sanitization of input data to the CapRTL
encoder could result in a heap buffer overflow, resulting in a crash or
potential code execution.
- debian/patches/CVE-2022-25309.patch: add checking and removal of
dangerous characters before encoding stage, in
lib/fribidi-char-sets-cap-rtl.c
- CVE-2022-25309
* SECURITY UPDATE: Incorrect handling of string pointer can result in a
crash in fribidi_remove_bidi_marks().
- debian/patches/CVE-2022-25310.patch: add checking for NULL strings,
to avoid potential use-after-free in lib/fribidi.c
- CVE-2022-25310
-- Ray Veldkamp <email address hidden> Wed, 06 Apr 2022 17:52:12 +1000
Upload details
- Uploaded by:
- Ray Veldkamp
- Uploaded to:
- Bionic
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- libs
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Bionic | updates | main | libs | |
| Bionic | security | main | libs |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| fribidi_0.19.7.orig.tar.bz2 | 633.1 KiB | 08222a6212bbc2276a2d55c3bf370109ae4a35b689acbc66571ad2a670595a8e |
| fribidi_0.19.7-2ubuntu0.1.debian.tar.xz | 8.8 KiB | a7541b69bfe73e36d7f2acb87ca8749ce15cecd6c4bd18f626acb79397f47753 |
| fribidi_0.19.7-2ubuntu0.1.dsc | 2.4 KiB | 410c3719e3bcb151c5eda7a7c11e19c4a65a8a138605867f48c01433d9ec906e |
Available diffs
Binary packages built by this source
- libfribidi-bin: Free Implementation of the Unicode BiDi algorithm (utility)
FriBiDi is a BiDi algorithm implementation for Hebrew and/or Arabic
languages.
This package contains a command line interface for the fribidi library.
- libfribidi-bin-dbgsym: debug symbols for libfribidi-bin
- libfribidi-dev: Development files for FreeBidi library
FriBiDi is a BiDi algorithm implementation for Hebrew and/or Arabic
languages.
This package contains the header files and static libraries for the
FriBidi C library.
- libfribidi0: Free Implementation of the Unicode BiDi algorithm
FriBiDi is a BiDi algorithm implementation for Hebrew and/or Arabic
languages.
This package contains the shared libraries.
- libfribidi0-dbgsym: debug symbols for libfribidi0
- libfribidi0-udeb: Free Implementation of the Unicode BiDi algorithm
This Debian Installer component provided Bidirectional support
for Arabic and/or Hebrew languages.
