Fribidi : Security Vulnerabilities, CVEs,
Buffer overflow in the fribidi_utf8_to_unicode function in PyFriBidi before 0.11.0 allows remote attackers to cause a denial of service (application crash) via a 4-byte utf-8 sequence.
Max CVSS
5.0
EPSS Score
9.72%
Published
2012-08-26
Updated
2017-08-29
Buffer overflow in the log2vis_utf8 function in pyfribidi.c in GNU FriBidi 0.19.1, 0.19.2, and possibly other versions, as used in PyFriBidi 0.10.1, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted Arabic UTF-8 string that causes original 2-byte UTF-8 sequences to be transformed into 3-byte sequences.
Max CVSS
7.5
EPSS Score
22.84%
Published
2011-01-11
Updated
2017-08-17
2 vulnerabilities found