Security
Headlines
HeadlinesLatestCVEs

Headline

Ubuntu Security Notice USN-5366-2

Ubuntu Security Notice 5366-2 - USN-5366-1 fixed several vulnerabilities in FriBidi. This update provides the corresponding updates for Ubuntu 22.04 LTS. It was discovered that FriBidi incorrectly handled processing of input strings resulting in memory corruption. An attacker could use this issue to cause FriBidi to crash, resulting in a denial of service, or potentially execute arbitrary code.

Packet Storm
#vulnerability#ubuntu#dos
==========================================================================Ubuntu Security Notice USN-5366-2April 27, 2022fribidi vulnerabilities==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 22.04 LTSSummary:Several security issues were fixed in fribidi.Software Description:- fribidi: Free Implementation of the Unicode BiDi algorithm (utility)Details:USN-5366-1 fixed several vulnerabilities in FriBidi. This update provides thecorresponding updates for Ubuntu 22.04 LTS.Original advisory details:It was discovered that FriBidi incorrectly handled processing of input stringsresulting in memory corruption. An attacker could use this issue to causeFriBidi to crash, resulting in a denial of service, or potentially executearbitrary code. (CVE-2022-25308)It was discovered that FriBidi incorrectly validated input data to its CapRTLunicode encoder, resulting in memory corruption. An attacker could use thisissue to cause FriBidi to crash, resulting in a denial of service, orpotentially execute arbitrary code. (CVE-2022-25309)It was discovered that FriBidi incorrectly handled empty input when removingmarks from unicode strings, resulting in a crash. An attacker could use thisto cause FriBidi to crash, resulting in a denial of service, or potentially executearbitrary code. (CVE-2022-25310)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 22.04 LTS:libfribidi-bin 1.0.8-2ubuntu3.1libfribidi-dev 1.0.8-2ubuntu3.1libfribidi0 1.0.8-2ubuntu3.1In general, a standard system update will make all the necessary changes.References:https://ubuntu.com/security/notices/USN-5366-2https://ubuntu.com/security/notices/USN-5366-1CVE-2022-25308, CVE-2022-25309, CVE-2022-25310Package Information:https://launchpad.net/ubuntu/+source/fribidi/1.0.8-2ubuntu3.1

Packet Storm: Latest News

ABB Cylon Aspect 3.08.01 vstatConfigurationDownload.php Configuration Download