7 matches found
HarfBuzz heap-buffer-overflow on hb_cairo_glyphs_from_buffer
...
OESA-2025-1019 harfbuzz security update
HarfBuzz is a text-shaping engine. If you give HarfBuzz a font and a string containing a sequence of Unicode codepoints, HarfBuzz selects and positions the corresponding glyphs from the font, applying all of the necessary layout rules and font features. HarfBuzz then returns the string to you in...
OESA-2025-1009 harfbuzz security update
HarfBuzz is a text-shaping engine. If you give HarfBuzz a font and a string containing a sequence of Unicode codepoints, HarfBuzz selects and positions the corresponding glyphs from the font, applying all of the necessary layout rules and font features. HarfBuzz then returns the string to you in...
DEBIAN-CVE-2024-56732
HarfBuzz is a text shaping engine. Starting with 8.5.0 through 10.0.1, there is a heap-based buffer overflow in the hbcairoglyphsfrombuffer function...
AZL-54701 CVE-2024-56732 affecting package qtbase for versions less than 6.6.3-2
HarfBuzz is a text shaping engine. Starting with 8.5.0 through 10.0.1, there is a heap-based buffer overflow in the hbcairoglyphsfrombuffer function...
UBUNTU-CVE-2024-56732
HarfBuzz is a text shaping engine. Starting with 8.5.0 through 10.0.1, there is a heap-based buffer overflow in the hbcairoglyphsfrombuffer function...
PT-2024-37045
Name of the Vulnerable Software and Affected Versions HarfBuzz versions 8.5.0 through 10.0.1 Description HarfBuzz is a text shaping engine. There is a heap-based buffer overflow in the hb cairo glyphs from buffer function. This issue may allow a remote attacker to execute arbitrary code on the...