[Bug 2036820] CVE-2021-45931 harfbuzz: out-of-bounds write in hb_bit_set_invertible_t::set

16 Feb 2024


      https://bugzilla.redhat.com/show_bug.cgi?id=2036820
--- Doc Text *updated* by RaTasha Tillery-Smith rtillery@redhat.com ---
An out-of-bounds write flaw was found in HarfBuzz, arising from a boundary error in the hb_bit_set_invertible_t::set() function when processing untrusted input. This flaw allows an attacker to create a specially crafted file, convince the victim to open it, and trigger an out-of-bounds write. In some cases, this issue could lead to the execution of arbitrary code on the target system or, more commonly, result in a denial of service attack.
-- 
You are receiving this mail because:
You are on the CC list for the bug.
https://bugzilla.redhat.com/show_bug.cgi?id=2036820

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

[Bug 2036820] CVE-2021-45931 harfbuzz: out-of-bounds write in hb_bit_set_invertible_t::set