There's a buffer overflow in pyfribidi < 0.11. pyfribidi is being used my mwlib in order to render right-to-left texts. In case you're running your own render server and you have pyfribidi installed, you should upgrade pyfribidi to version 0.11.0. "pip install -U pyfribidi" should do that. I assume this bug may lead to remote code execution.
The following links web pages contain more information: https://github.com/pediapress/pyfribidi/issues/2 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=663189 https://bugs.launchpad.net/ubuntu/+source/pyfribidi/+bug/950634 -- Cheers Ralf -- You received this message because you are subscribed to the Google Groups "mwlib" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/mwlib?hl=en.
