frysk is an execution-analysis technology implemented using native Java andC++. It provides developers and system administrators with the ability toexamine and analyze multi-host, multi-process, and multithreaded systemswhile they are running. frysk is released as a Technology Preview for RedHat Enterprise Linux 4.A buffer overflow flaw was found in HarfBuzz, an OpenType text shapingengine used in the embedded Pango library. If a frysk application were usedto debug or trace a process that uses HarfBuzz while it loaded aspecially-crafted font file, it could cause the application to crash or,possibly, execute arbitrary code with the privileges of the user runningthe application. (CVE-2011-3193)Users of frysk are advised to upgrade to this updated package, whichcontains a backported patch to correct this issue. All running fryskapplications must be restarted for this update to take effect.