Lucene search
Veracode Vulnerability DatabaseVERACODE:36458HistoryJul 24, 2022 - 11:48 a.m.
Denial Of Service (DoS)
2022-07-2411:48:25
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.001 Low
EPSS
Percentile
46.3%
harfbuzz:edge is vulnerable to denial of service (DoS) attacks. An integer overflow in the component hb-ot-shape-fallback.cc allows attackers to cause a Denial of Service (DoS) via unspecified vectors.
References
github.com/harfbuzz/harfbuzz/commit/62e803b36173fd096d7ad460dd1d1db9be542593
github.com/harfbuzz/harfbuzz/issues/3557
lists.fedoraproject.org/archives/list/[email protected]/message/FQBJ24W6TXLSAQWCFW7IBGUMX4AJI3S4/
lists.fedoraproject.org/archives/list/[email protected]/message/QQMEXOVDL3T2UXKBCON7JSOCE646G7HG/
lists.fedoraproject.org/archives/list/[email protected]/message/W56WTC5IY4EIUHVUIHMCXA3BSBZLSZCI/
secdb.alpinelinux.org/edge/main.yaml
security.gentoo.org/glsa/202209-11
Related
fedora
fedora
[SECURITY] Fedora 36 Update: harfbuzz-4.0.0-2.fc36
2022-07-17 01:15:16
[SECURITY] Fedora 36 Update: mingw-harfbuzz-3.3.2-2.fc36
2022-07-30 02:00:49
[SECURITY] Fedora 35 Update: mingw-harfbuzz-2.9.1-2.fc35
2022-07-30 01:26:14
nessus
nessus
SUSE SLED15 / SLES15 Security Update : harfbuzz (SUSE-SU-2022:2663-1)
2022-08-05 00:00:00
SUSE SLED15 / SLES15 Security Update : harfbuzz (SUSE-SU-2022:2664-1)
2022-08-05 00:00:00
EulerOS 2.0 SP10 : harfbuzz (EulerOS-SA-2022-2684)
2022-11-02 00:00:00
osv
osv
harfbuzz vulnerability
2022-07-19 11:58:35
Moderate: harfbuzz security update
2022-11-15 00:00:00
CVE-2022-33068
2022-06-23 17:15:14
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2022:2664-1)
2022-08-05 00:00:00
Fedora: Security Advisory for mingw-harfbuzz (FEDORA-2022-ced8f872b1)
2022-07-31 00:00:00
openSUSE: Security Advisory for harfbuzz (SUSE-SU-2022:2664-1)
2022-08-05 00:00:00
ubuntucve
ubuntucve
CVE-2022-33068
2022-06-23 00:00:00
suse
suse
Security update for harfbuzz (important)
2022-08-04 00:00:00
Security update for harfbuzz (important)
2022-08-04 00:00:00
Security update for harfbuzz (important)
2022-09-01 00:00:00
cnvd
cnvd
HarfBuzz Denial of Service Vulnerability (CNVD-2022-76501)
2022-06-27 00:00:00
oraclelinux
oraclelinux
harfbuzz security update
2022-11-22 00:00:00
redhatcve
redhatcve
CVE-2022-33068
2022-06-30 11:05:36
ubuntu
ubuntu
HarfBuzz vulnerability
2022-07-19 00:00:00
nvd
nvd
CVE-2022-33068
2022-06-23 17:15:14
cvelist
cvelist
CVE-2022-33068
2022-06-22 13:24:42
almalinux
almalinux
Moderate: harfbuzz security update
2022-11-15 00:00:00
rocky
rocky
harfbuzz security update
2022-11-15 06:23:02
redhat
redhat
(RHSA-2022:8384) Moderate: harfbuzz security update
2022-11-15 06:23:02
debiancve
debiancve
CVE-2022-33068
2022-06-23 17:15:14
alpinelinux
alpinelinux
CVE-2022-33068
2022-06-23 17:15:14
gitlab
gitlab
Integer Overflow or Wraparound
2022-06-23 00:00:00
redos
redos
ROS-20220721-02
2022-07-21 00:00:00
prion
prion
Integer overflow
2022-06-23 17:15:00
cve
cve
CVE-2022-33068
2022-06-23 17:15:14
gentoo
gentoo
HarfBuzz: Multiple vulnerabilities
2022-09-25 00:00:00