Lucene search
K

695 matches found

OSV
OSV
added 2026/01/10 6:15 a.m.7 views

AZL-73970 CVE-2026-22693 affecting package harfbuzz for versions less than 8.3.0-4

HarfBuzz is a text shaping engine. Prior to version 12.3.0, a null pointer dereference vulnerability exists in the SubtableUnicodesCache::create function located in src/hb-ot-cmap-table.hh. The function fails to check if hbmalloc returns NULL before using placement new to construct an object at t...

5.3CVSS5.7AI score0.00377EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2026/01/10 6:15 a.m.6 views

CVE-2026-22693

HarfBuzz is a text shaping engine. Prior to version 12.3.0, a null pointer dereference vulnerability exists in the SubtableUnicodesCache::create function located in src/hb-ot-cmap-table.hh. The function fails to check if hbmalloc returns NULL before using placement new to construct an object at t...

5.3CVSS5.9AI score0.00377EPSS
Exploits1References3
OSV
OSV
added 2026/01/10 6:15 a.m.6 views

UBUNTU-CVE-2026-22693

HarfBuzz is a text shaping engine. Prior to version 12.3.0, a null pointer dereference vulnerability exists in the SubtableUnicodesCache::create function located in src/hb-ot-cmap-table.hh. The function fails to check if hbmalloc returns NULL before using placement new to construct an object at t...

5.3CVSS5.8AI score0.00377EPSS
Exploits1References4
OSV
OSV
added 2026/01/10 5:53 a.m.4 views

CVE-2026-22693 Null Pointer Dereference in SubtableUnicodesCache::create leading to DoS

HarfBuzz is a text shaping engine. Prior to version 12.3.0, a null pointer dereference vulnerability exists in the SubtableUnicodesCache::create function located in src/hb-ot-cmap-table.hh. The function fails to check if hbmalloc returns NULL before using placement new to construct an object at t...

5.3CVSS6.7AI score0.00377EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2026/01/10 5:53 a.m.1 views

CVE-2026-22693 Null Pointer Dereference in SubtableUnicodesCache::create leading to DoS

HarfBuzz is a text shaping engine. Prior to version 12.3.0, a null pointer dereference vulnerability exists in the SubtableUnicodesCache::create function located in src/hb-ot-cmap-table.hh. The function fails to check if hbmalloc returns NULL before using placement new to construct an object at t...

5.3CVSS6.7AI score0.00377EPSS
Exploits1References2
EUVD
EUVD
added 2026/01/10 5:53 a.m.6 views

EUVD-2026-1871

HarfBuzz is a text shaping engine. Prior to version 12.3.0, a null pointer dereference vulnerability exists in the SubtableUnicodesCache::create function located in src/hb-ot-cmap-table.hh. The function fails to check if hbmalloc returns NULL before using placement new to construct an object at t...

5.3CVSS6.5AI score0.00377EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/01/10 5:53 a.m.26 views

CVE-2026-22693 Null Pointer Dereference in SubtableUnicodesCache::create leading to DoS

HarfBuzz is a text shaping engine. Prior to version 12.3.0, a null pointer dereference vulnerability exists in the SubtableUnicodesCache::create function located in src/hb-ot-cmap-table.hh. The function fails to check if hbmalloc returns NULL before using placement new to construct an object at t...

5.3CVSS0.00377EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2026/01/10 5:53 a.m.4 views

CVE-2026-22693

HarfBuzz is a text shaping engine. Prior to version 12.3.0, a null pointer dereference vulnerability exists in the SubtableUnicodesCache::create function located in src/hb-ot-cmap-table.hh. The function fails to check if hbmalloc returns NULL before using placement new to construct an object at t...

5.3CVSS5.3AI score0.00377EPSS
Exploits1
AlpineLinux
AlpineLinux
added 2026/01/10 5:53 a.m.3 views

CVE-2026-22693

HarfBuzz is a text shaping engine. Prior to version 12.3.0, a null pointer dereference vulnerability exists in the SubtableUnicodesCache::create function located in src/hb-ot-cmap-table.hh. The function fails to check if hbmalloc returns NULL before using placement new to construct an object at t...

5.3CVSS7.1AI score0.00377EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/01/10 12:0 a.m.5 views

HarfBuzz 安全漏洞

HarfBuzz is HarfBuzz open source a text engine for OpenType fonts. HarfBuzz version before 12.3.0 has a security vulnerability , the vulnerability stems from the SubtableUnicodesCache::create function does not check the hbmalloc return value , which may lead to null pointer dereferencing and...

5.3CVSS6.4AI score0.00377EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/01/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-22693

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HarfBuzz is a text shaping engine. Prior to version 12.3.0, a null pointer dereference vulnerability exists in the SubtableUnicodesCache::create function locate...

5.3CVSS5.8AI score0.00377EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.3 views

PT-2026-2246

Name of the Vulnerable Software and Affected Versions HarfBuzz versions prior to 12.3.0 Description HarfBuzz is a text shaping engine. A null pointer dereference issue exists in the SubtableUnicodesCache::create function, located in src/hb-ot-cmap-table.hh. The function does not verify if hb mall...

5.3CVSS6.7AI score0.00377EPSS
Exploits1References25
Tenable Nessus
Tenable Nessus
added 2025/10/24 12:0 a.m.7 views

Oracle Linux 10 / 8 / 9 : java-21-openjdk (ELSA-2025-18824)

The remote Oracle Linux 10 / 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-18824 advisory. 1:21.0.9.0.10-1.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:21.0.9.0.10-1 - Update to jdk-21.0.9+10 GA - Update release notes to...

7.5CVSS7.4AI score0.00633EPSS
Exploits0References4
OSV
OSV
added 2025/10/21 5:24 p.m.5 views

JLSEC-2025-175 hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger O(n^2) growth via con...

hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger On^2 growth via consecutive marks during the process of looking back for base glyphs when attaching marks...

7.5CVSS6.9AI score0.01812EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-8803

Malware in sbrugna...

7.6CVSS7.6AI score0.02451EPSS
Exploits0References13
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2011-0090

Malware in sbrugna...

6.8CVSS7.1AI score0.03333EPSS
Exploits0References28
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-3157

Malware in sbrugna...

7.6CVSS7.6AI score0.00959EPSS
Exploits0References17
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2011-3157

Malware in sbrugna...

9.3CVSS6AI score0.07543EPSS
Exploits0References37
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-9116

Malware in sbrugna...

6.5CVSS6.7AI score0.01542EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-29157

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.01812EPSS
Exploits0References10
Rows per page
Query Builder