11 matches found
Linux Distros Unpatched Vulnerability : CVE-2015-8947
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - hb-ot-layout-gpos-table.hh in HarfBuzz before 1.0.5 allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other...
RHEL 7 : harfbuzz (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - chromium-browser: Multiple unspecified vulnerabilities in HarfBuzz before 1.0.6 CVE-2015-8947,...
SUSE CVE-2015-8947
hb-ot-layout-gpos-table.hh in HarfBuzz before 1.0.5 allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other impact via crafted data, a different vulnerability than CVE-2016-2052...
GLSA-201701-76 : HarfBuzz: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201701-76 HarfBuzz: Multiple vulnerabilities Multiple vulnerabilities have been discovered in HarfBuzz. Please review the CVE identifiers referenced below for details. Impact : Remote attackers, through the use of crafted data,...
USN-3067-1: HarfBuzz vulnerabilities
Kostya Serebryany discovered that HarfBuzz incorrectly handled memory. A remote attacker could use this issue to cause HarfBuzz to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2015-8947 It was discovered that HarfBuzz incorrectly handled certain length checks. ...
openSUSE Security Update : harfbuzz (openSUSE-2016-986)
This update for harfbuzz fixes the following security issues : - CVE-2016-2052: harfbuzz: Multiple unspecified vulnerabilities in HarfBuzz before 1.0.6 boo963436 - CVE-2015-8947: harfbuzz: hb-ot-layout-gpos-table.hh buffer over-read boo989564 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. T...
CVE-2015-8947
hb-ot-layout-gpos-table.hh in HarfBuzz before 1.0.5 allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other impact via crafted data, a different vulnerability than CVE-2016-2052...
CVE-2015-8947
HarfBuzz vulnerability CVE-2015-8947 affects the text shaping engine, specifically the file hb-ot-layout-gpos-table.hh. Affected product/version: HarfBuzz prior to 1.0.5. Root cause: a buffer over-read in the OpenType layout processing path when handling crafted data. Impact: remote attacker coul...
UBUNTU-CVE-2015-8947
hb-ot-layout-gpos-table.hh in HarfBuzz before 1.0.5 allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other impact via crafted data, a different vulnerability than CVE-2016-2052...
Buffer overflow
Multiple unspecified vulnerabilities in HarfBuzz before 1.0.6, as used in Google Chrome before 48.0.2564.82, allow attackers to cause a denial of service or possibly have other impact via crafted data, as demonstrated by a buffer over-read resulting from an inverted length check in hb-ot-font.cc,...
CVE-2016-2052
HarfBuzz contains CVE-2016-2052: a buffer over-read due to an inverted length check in hb-ot-font.cc, affecting HarfBuzz up to 1.0.6 and used by Google Chrome prior to 48.0.2564.82. Affected data could cause a denial of service or other impact. The issue is fixed in HarfBuzz 1.0.6 and later; upgr...