Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-1176

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2012-1176
Last Modified 09 Sep 2013 02:15:46
Published 26 Aug 2012 04:55:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-1176

Summary

Buffer overflow in the fribidi_utf8_to_unicode function in PyFriBidi before 0.11.0 allows remote attackers to cause a denial of service (application crash) via a 4-byte utf-8 sequence.

Vulnerable Systems

Application

  • Pyfribidi 0.10.9


References

CONFIRM - https://github.com/pediapress/pyfribidi/issues/2%29:

CONFIRM - https://github.com/pediapress/pyfribidi/commit/d2860c655357975e7b32d84e6b45e98f0dcecd7a

MISC - https://bugzilla.wikimedia.org/show_bug.cgi?id=35055

MISC - https://bugzilla.redhat.com/show_bug.cgi?id=801896

XF - fribidi-utf8-bo(74001)

BID - 52451

MLIST - [oss-security] 20120314 Re: CVE request: pyfribidi buffer overflow flaw

MLIST - [oss-security] 20120314 CVE request: pyfribidi buffer overflow flaw

FEDORA - FEDORA-2012-3513

MISC - http://groups.google.com/group/linux.debian.bugs.dist/browse_thread/thread/aacd036037217998/8d095f85f3665bff?lnk=raot

MISC - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=663189

FEDORA - FEDORA-2012-3549

FEDORA - FEDORA-2012-3537


Last Updated: 27 May 2016 11:00:18