VYPR

rpm package

suse/harfbuzz&distro=SUSE Linux Micro 6.2

pkg:rpm/suse/harfbuzz&distro=SUSE%20Linux%20Micro%206.2

Vulnerabilities (1)

  • CVE-2026-22693Jan 10, 2026
    affected < 11.4.5-160000.1.1fixed 11.4.5-160000.1.1

    HarfBuzz is a text shaping engine. Prior to version 12.3.0, a null pointer dereference vulnerability exists in the SubtableUnicodesCache::create function located in src/hb-ot-cmap-table.hh. The function fails to check if hb_malloc returns NULL before using placement new to constr