CVE-2022-25310: 
NixOS vulnerability analysis and mitigation

A segmentation fault (SEGV) vulnerability was discovered in the Fribidi package, specifically affecting the fribidiremovebidi_marks() function in the lib/fribidi.c file. The vulnerability was assigned CVE-2022-25310 and was first reported on December 22, 2021. The flaw affects Fribidi versions up to (excluding) 1.0.12 (NVD, CVE Mitre).

The vulnerability is caused by a NULL pointer dereference in the fribidiremovebidi_marks() function. The issue occurs when processing specially crafted input files, leading to a segmentation fault. The vulnerability has been assigned a CVSS v3.1 base score of 5.5 (Medium) with the vector string CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H. The flaw is classified under CWE-476 (NULL Pointer Dereference) and CWE-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer) (NVD).

When exploited, this vulnerability allows an attacker to pass a specially crafted file to Fribidi, resulting in a crash of the application and causing a denial of service condition. The impact is limited to availability, with no direct impact on confidentiality or integrity (Red Hat Advisory).

The vulnerability has been fixed in Fribidi version 1.0.12 and later releases. The fix involves adding a null check in the fribidiremovebidi_marks() function to prevent the segmentation fault. Various Linux distributions have released security updates to address this vulnerability, including Red Hat Enterprise Linux 8 and 9 through RHSA-2022:7514 and RHSA-2022:8011 respectively (GitHub PR).