Astra Linux - уязвимость в harfbuzz

HarfBuzz is a text shaping engine. Prior to version 12.3.0, there was a null pointer dereference vulnerability in the SubtableUnicodesCache::create function located in src/hb-ot-cmap-table.hh. The function fails to check whether hbmalloc returns NULL before using placement new to construct an...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : harfbuzz (SUSE-SU-2026:0287-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:0287-1 advisory. - CVE-2026-22693: Fixed a NULL pointer dereference in SubtableUnicodesCache::create bsc1256459. Tenable h...

Null Pointer Dereference in SubtableUnicodesCache::create leading to DoS

...

PT-2026-2246

Name of the Vulnerable Software and Affected Versions HarfBuzz versions prior to 12.3.0 Description HarfBuzz is a text shaping engine. A null pointer dereference issue exists in the SubtableUnicodesCache::create function, located in src/hb-ot-cmap-table.hh. The function does not verify if hb mall...