28 matches found
Alibaba Cloud Linux 3 : 0147: harfbuzz (ALINUX3-SA-2023:0147)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2023:0147 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2022-33068: An integer overflow in the componen...
Linux Distros Unpatched Vulnerability : CVE-2022-33068
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An integer overflow in the component hb-ot-shape-fallback.cc of Harfbuzz v4.3.0 allows attackers to cause a Denial of Service DoS via unspecified vectors...
BELL-CVE-2022-33068 CVE-2022-33068 does not affect BellSoft software
Bulletin has no description...
Medium: harfbuzz
Issue Overview: An integer overflow in the component hb-ot-shape-fallback.cc of Harfbuzz v4.3.0 allows attackers to cause a Denial of Service DoS via unspecified vectors. CVE-2022-33068 hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger On^2 growth via consecutive mark...
Oracle Linux 9 : harfbuzz (ELSA-2022-8384)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-8384 advisory. - Resolves:rh2103849 CVE-2022-33068 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has...
Moderate: Red Hat Security Advisory: harfbuzz security update
An update for harfbuzz is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...
RLSA-2022:8384 Moderate: harfbuzz security update
HarfBuzz is an implementation of the OpenType Layout engine. Security Fixes: harfbuzz: integer overflow in the component hb-ot-shape-fallback.cc CVE-2022-33068 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer to...
harfbuzz security update
An update is available for harfbuzz. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list HarfBuzz is an implementation of the OpenType Layout engine. Security Fixes:...
ALSA-2022:8384 Moderate: harfbuzz security update
HarfBuzz is an implementation of the OpenType Layout engine. Security Fixes: harfbuzz: integer overflow in the component hb-ot-shape-fallback.cc CVE-2022-33068 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer to...
Moderate: harfbuzz security update
HarfBuzz is an implementation of the OpenType Layout engine. Security Fixes: harfbuzz: integer overflow in the component hb-ot-shape-fallback.cc CVE-2022-33068 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer to...
Huawei EulerOS: Security Advisory for harfbuzz (EulerOS-SA-2022-2684)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP10 : harfbuzz (EulerOS-SA-2022-2684)
According to the versions of the harfbuzz packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An integer overflow in the component hb-ot-shape-fallback.cc of Harfbuzz v4.3.0 allows attackers to cause a Denial of Service DoS via...
GLSA-202209-11 : HarfBuzz: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202209-11 HarfBuzz: Multiple vulnerabilities - HarfBuzz 2.9.0 has an out-of-bounds write in hbbitsetinvertiblet::set called from hbsparsesett::set and hbsetcopy. CVE-2021-45931 - An integer overflow in the component...
EulerOS 2.0 SP9 : harfbuzz (EulerOS-SA-2022-2319)
According to the versions of the harfbuzz packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An integer overflow in the component hb-ot-shape-fallback.cc of Harfbuzz v4.3.0 allows attackers to cause a Denial of Service DoS via...
EulerOS 2.0 SP9 : harfbuzz (EulerOS-SA-2022-2290)
According to the versions of the harfbuzz packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An integer overflow in the component hb-ot-shape-fallback.cc of Harfbuzz v4.3.0 allows attackers to cause a Denial of Service DoS via...
SUSE SLED15: harfbuzz-devel / harfbuzz-tools / libharfbuzz-gobject0 / etc (SUSE-SU-2022:2663-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:2663-1 advisory. - CVE-2022-33068: Fixed a integer overflow in hb-ot-shape-fallback.cc bsc1200900. Tenable has extracted t...
SUSE: Security Advisory (SUSE-SU-2022:2664-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for harfbuzz (SUSE-SU-2022:2663-1)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE: Security Advisory for harfbuzz (SUSE-SU-2022:2664-1)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE SLED15: harfbuzz-devel / harfbuzz-tools / libharfbuzz-gobject0 / etc (SUSE-SU-2022:2664-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:2664-1 advisory. - CVE-2022-33068: Fixed a integer overflow in hb-ot-shape-fallback.cc bsc1200900. Tenable has extracted t...