vulnerability

SUSE: CVE-2023-25193: SUSE Linux Security Advisory

Try Surface Command
Back to search
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
2023-02-04
Added
2023-04-13
Modified
2025-01-28

Description

hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger O(n^2) growth via consecutive marks during the process of looking back for base glyphs when attaching marks.

Solution(s)

suse-upgrade-harfbuzz-develsuse-upgrade-harfbuzz-toolssuse-upgrade-java-11-openjdksuse-upgrade-java-11-openjdk-demosuse-upgrade-java-11-openjdk-develsuse-upgrade-java-11-openjdk-headlesssuse-upgrade-java-11-openjdk-javadocsuse-upgrade-java-11-openjdk-jmodssuse-upgrade-java-11-openjdk-srcsuse-upgrade-java-17-openjdksuse-upgrade-java-17-openjdk-demosuse-upgrade-java-17-openjdk-develsuse-upgrade-java-17-openjdk-headlesssuse-upgrade-java-17-openjdk-javadocsuse-upgrade-java-17-openjdk-jmodssuse-upgrade-java-17-openjdk-srcsuse-upgrade-java-1_8_0-ibmsuse-upgrade-java-1_8_0-ibm-32bitsuse-upgrade-java-1_8_0-ibm-alsasuse-upgrade-java-1_8_0-ibm-demosuse-upgrade-java-1_8_0-ibm-develsuse-upgrade-java-1_8_0-ibm-devel-32bitsuse-upgrade-java-1_8_0-ibm-pluginsuse-upgrade-java-1_8_0-ibm-srcsuse-upgrade-libharfbuzz-gobject0suse-upgrade-libharfbuzz-gobject0-32bitsuse-upgrade-libharfbuzz-icu0suse-upgrade-libharfbuzz-icu0-32bitsuse-upgrade-libharfbuzz-subset0suse-upgrade-libharfbuzz-subset0-32bitsuse-upgrade-libharfbuzz0suse-upgrade-libharfbuzz0-32bitsuse-upgrade-typelib-1_0-harfbuzz-0_0

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today