Lucene search
K

695 matches found

NVD
NVD
added 2026/01/19 4:15 a.m.6 views

CVE-2026-0943

HarfBuzz::Shaper versions before 0.032 for Perl contains a bundled library with a null pointer dereference vulnerability. Versions before 0.032 contain HarfBuzz 8.4.0 or earlier bundled as hbsrc.tar.gz in the source tarball, which is affected by CVE-2026-22693...

7.5CVSS0.00424EPSS
Exploits0References3
OSV
OSV
added 2026/01/19 4:15 a.m.4 views

CVE-2026-0943

HarfBuzz::Shaper versions before 0.032 for Perl contains a bundled library with a null pointer dereference vulnerability. Versions before 0.032 contain HarfBuzz 8.4.0 or earlier bundled as hbsrc.tar.gz in the source tarball, which is affected by CVE-2026-22693...

7.5CVSS5.8AI score0.00377EPSS
Exploits1References3
OSV
OSV
added 2026/01/19 4:15 a.m.2 views

UBUNTU-CVE-2026-0943

HarfBuzz::Shaper versions before 0.032 for Perl contains a bundled library with a null pointer dereference vulnerability. Versions before 0.032 contain HarfBuzz 8.4.0 or earlier bundled as hbsrc.tar.gz in the source tarball, which is affected by CVE-2026-22693...

7.5CVSS5.8AI score0.00424EPSS
Exploits1References6
CVE
CVE
added 2026/01/19 2:46 a.m.23 views

CVE-2026-0943

The CVE-2026-0943 entry concerns HarfBuzz::Shaper (Perl) with a bundled HarfBuzz library. Versions before 0.032 include HarfBuzz 8.4.0 or earlier in hb_src.tar.gz, which is affected by CVE-2026-22693 due to a null pointer dereference in a subtable cache (SubtableUnicodesCache::create). The vulner...

7.5CVSS6.5AI score0.00424EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/01/19 2:46 a.m.4 views

CVE-2026-0943

HarfBuzz::Shaper versions before 0.032 for Perl contains a bundled library with a null pointer dereference vulnerability. Versions before 0.032 contain HarfBuzz 8.4.0 or earlier bundled as hbsrc.tar.gz in the source tarball, which is affected by CVE-2026-22693...

7.5CVSS5.3AI score0.00424EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2026/01/19 2:46 a.m.6 views

CVE-2026-0943

HarfBuzz::Shaper versions before 0.032 for Perl contains a bundled library with a null pointer dereference vulnerability. Versions before 0.032 contain HarfBuzz 8.4.0 or earlier bundled as hbsrc.tar.gz in the source tarball, which is affected by CVE-2026-22693...

7.5CVSS5.2AI score0.00424EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/01/19 2:46 a.m.4 views

CVE-2026-0943 HarfBuzz::Shaper versions before 0.032 for Perl contains a bundled library with a null pointer dereference vulnerability

HarfBuzz::Shaper versions before 0.032 for Perl contains a bundled library with a null pointer dereference vulnerability. Versions before 0.032 contain HarfBuzz 8.4.0 or earlier bundled as hbsrc.tar.gz in the source tarball, which is affected by CVE-2026-22693...

5.3AI score0.00424EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/19 2:46 a.m.24 views

CVE-2026-0943 HarfBuzz::Shaper versions before 0.032 for Perl contains a bundled library with a null pointer dereference vulnerability

HarfBuzz::Shaper versions before 0.032 for Perl contains a bundled library with a null pointer dereference vulnerability. Versions before 0.032 contain HarfBuzz 8.4.0 or earlier bundled as hbsrc.tar.gz in the source tarball, which is affected by CVE-2026-22693...

0.00424EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/19 12:0 a.m.6 views

PT-2026-3420

Name of the Vulnerable Software and Affected Versions HarfBuzz::Shaper versions prior to 0.032 Description HarfBuzz::Shaper versions before 0.032 include a bundled library with a null pointer dereference issue. The vulnerable component is HarfBuzz 8.4.0 or earlier, packaged as hb src.tar.gz withi...

7.5CVSS5.2AI score0.00424EPSS
Exploits1References6
OPENSUSE Linux
OPENSUSE Linux
added 2026/01/19 12:0 a.m.3 views

harfbuzz-devel-12.3.0-2.1 on GA media (moderate)

harfbuzz-devel-12.3.0-2.1 on GA media Announcement ID: openSUSE-SU-2026:10065-1 Rating: moderate Cross-References: CVE-2026-22693 CVSS scores: CVE-2026-22693 SUSE : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2026-22693 SUSE : 6.9...

6.9CVSS5.5AI score0.00377EPSS
Exploits1
CNNVD
CNNVD
added 2026/01/19 12:0 a.m.7 views

MetaCPAN HarfBuzz::Shaper security vulnerability

MetaCPAN HarfBuzz::Shaper is an interface extension module of the MetaCPAN Foundation. Versions of MetaCPAN HarfBuzz::Shaper prior to 0.032 contained a security vulnerability. This vulnerability stemmed from null pointer dereferencing in the bundled libraries, which could lead to null pointer...

7.5CVSS5.8AI score0.00424EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/01/19 12:0 a.m.4 views

CVE-2026-0943

HarfBuzz::Shaper versions before 0.032 for Perl contains a bundled library with a null pointer dereference vulnerability. Versions before 0.032 contain HarfBuzz 8.4.0 or earlier bundled as hbsrc.tar.gz in the source tarball, which is affected by CVE-2026-22693...

7.5CVSS5.9AI score0.00424EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2026/01/19 12:0 a.m.5 views

Fedora: Security Advisory (FEDORA-2026-b38fe572ef)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS5.5AI score0.00377EPSS
Exploits1References3
OSV
OSV
added 2026/01/18 12:0 a.m.2 views

OPENSUSE-SU-2026:10065-1 harfbuzz-devel-12.3.0-2.1 on GA media

These are all security issues fixed in the harfbuzz-devel-12.3.0-2.1 package on the GA media of openSUSE Tumbleweed...

5.3CVSS5.8AI score0.00377EPSS
Exploits1References1
Fedora
Fedora
added 2026/01/16 5:43 p.m.9 views

[SECURITY] Fedora 43 Update: harfbuzz-11.5.1-2.fc43

HarfBuzz is an implementation of the OpenType Layout engine...

5.3CVSS7AI score0.00377EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Fedora 43 : harfbuzz (2026-b38fe572ef)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-b38fe572ef advisory. Backport security fix for CVE-2026-22693 fix RHBZ2429288 Tenable has extracted the preceding description block directly from the Fedora security advisory. No...

5.3CVSS5.5AI score0.00377EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/01/13 10:55 p.m.5 views

CVE-2026-22693

A null pointer dereference vector has been discovered in the harfbuzz package. A null pointer dereference vulnerability exists in the SubtableUnicodesCache::create function located in src/hb-ot-cmap-table.hh:1672-1673. The function fails to check if hbmalloc returns NULL before using placement ne...

5.3CVSS5.1AI score0.00377EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2026/01/13 12:24 a.m.5 views

SUSE CVE-2026-22693

HarfBuzz is a text shaping engine. Prior to version 12.3.0, a null pointer dereference vulnerability exists in the SubtableUnicodesCache::create function located in src/hb-ot-cmap-table.hh. The function fails to check if hbmalloc returns NULL before using placement new to construct an object at t...

5.3CVSS7.1AI score0.00377EPSS
Exploits1References6
Snyk
Snyk
added 2026/01/10 6:51 a.m.5 views

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the SubtableUnicodesCache::create function when memory allocation fails and the return value is not checked before object construction. An attacker can cause a segmentation fault and crash the process by...

6.9CVSS6.7AI score0.00377EPSS
Exploits1References2
NVD
NVD
added 2026/01/10 6:15 a.m.8 views

CVE-2026-22693

HarfBuzz is a text shaping engine. Prior to version 12.3.0, a null pointer dereference vulnerability exists in the SubtableUnicodesCache::create function located in src/hb-ot-cmap-table.hh. The function fails to check if hbmalloc returns NULL before using placement new to construct an object at t...

5.3CVSS0.00377EPSS
Exploits1References4
Rows per page
Query Builder