CVE-2026-0943 HarfBuzz::Shaper versions before 0.032 for Perl contains a bundled library with a null pointer dereference vulnerability

HarfBuzz::Shaper versions before 0.032 for Perl contains a bundled library with a null pointer dereference vulnerability. Versions before 0.032 contain HarfBuzz 8.4.0 or earlier bundled as hbsrc.tar.gz in the source tarball, which is affected by CVE-2026-22693...

CVE-2026-0943

HarfBuzz::Shaper versions before 0.032 for Perl contains a bundled library with a null pointer dereference vulnerability. Versions before 0.032 contain HarfBuzz 8.4.0 or earlier bundled as hbsrc.tar.gz in the source tarball, which is affected by CVE-2026-22693...

PT-2026-3420

Name of the Vulnerable Software and Affected Versions HarfBuzz::Shaper versions prior to 0.032 Description HarfBuzz::Shaper versions before 0.032 include a bundled library with a null pointer dereference issue. The vulnerable component is HarfBuzz 8.4.0 or earlier, packaged as hb src.tar.gz withi...

java-17-openjdk security update

1:17.0.15.0.6-2.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:17.0.15.0.6-2 - Update to jdk-17.0.15+6 GA - Add to .gitignore openjdk-17.0.15+6.tar.xz - Set updatever to 15 - Set buildver to 6 - Set rpmrelease to 2 - Update sources to openjdk-17.0.15+6.tar.xz - Set bundled freetype provide...