Overview

File _patchinfo of Package patchinfo.24295

<patchinfo incident="24295">
  <issue tracker="cve" id="2022-25308"/>
  <issue tracker="cve" id="2022-25310"/>
  <issue tracker="cve" id="2022-25309"/>
  <issue tracker="bnc" id="1196150">VUL-0: CVE-2022-25310: fribidi: NULL pointer dereference in fribidi_remove_bidi_marks</issue>
  <issue tracker="bnc" id="1196147">VUL-0: CVE-2022-25308: fribidi: Stack out of bounds read</issue>
  <issue tracker="bnc" id="1196148">VUL-0: CVE-2022-25309: fribidi: Heap-buffer-overflow in fribidi_cap_rtl_to_unicode</issue>
  <packager>mgorse</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for fribidi</summary>
  <description>This update for fribidi fixes the following issues:

- CVE-2022-25308: Fixed stack out of bounds read (bsc#1196147).
- CVE-2022-25309: Fixed heap-buffer-overflow in fribidi_cap_rtl_to_unicode (bsc#1196148).
- CVE-2022-25310: Fixed NULL pointer dereference in fribidi_remove_bidi_marks (bsc#1196150).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places