[Bug 2036820] CVE-2021-45931 harfbuzz: out-of-bounds write in hb_bit_set_invertible_t::set

16 Feb 2024


      https://bugzilla.redhat.com/show_bug.cgi?id=2036820
--- Doc Text *updated* by TEJ RATHI trathi@redhat.com ---
HarfBuzz is susceptible to an out-of-bounds write flaw arising from a boundary error in the hb_bit_set_invertible_t::set() function when processing untrusted input. An attacker, by creating a specially crafted file and enticing the victim to open it, can trigger an out-of-bounds write. In some cases, this could lead to the execution of arbitrary code on the target system or, more commonly, result in a denial-of-service attack.
-- 
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2036820

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

[Bug 2036820] CVE-2021-45931 harfbuzz: out-of-bounds write in hb_bit_set_invertible_t::set