VYPR

rpm package

suse/harfbuzz&distro=SUSE Linux Enterprise Module for Basesystem 15 SP7

pkg:rpm/suse/harfbuzz&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7

Vulnerabilities (1)

  • CVE-2026-22693Jan 10, 2026
    affected < 8.3.0-150600.3.3.1fixed 8.3.0-150600.3.3.1

    HarfBuzz is a text shaping engine. Prior to version 12.3.0, a null pointer dereference vulnerability exists in the SubtableUnicodesCache::create function located in src/hb-ot-cmap-table.hh. The function fails to check if hb_malloc returns NULL before using placement new to constr