GHSA-hmr2-524c-vv28

Опубликовано: 19 янв. 2026

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

HarfBuzz::Shaper versions before 0.032 for Perl contains a bundled library with a null pointer dereference vulnerability.

Versions before 0.032 contain HarfBuzz 8.4.0 or earlier bundled as hb_src.tar.gz in the source tarball, which is affected by CVE-2026-22693.

HarfBuzz::Shaper versions before 0.032 for Perl contains a bundled library with a null pointer dereference vulnerability.

Versions before 0.032 contain HarfBuzz 8.4.0 or earlier bundled as hb_src.tar.gz in the source tarball, which is affected by CVE-2026-22693.

Ссылки

EPSS

Процентиль: 11%

0.00038

Низкий

7.5 High

CVSS3

CVE ID

CVE-2026-0943

Связанные уязвимости

CVE-2026-0943

CVSS3: 7.5

ubuntu

19 дней назад

HarfBuzz::Shaper versions before 0.032 for Perl contains a bundled library with a null pointer dereference vulnerability. Versions before 0.032 contain HarfBuzz 8.4.0 or earlier bundled as hb_src.tar.gz in the source tarball, which is affected by CVE-2026-22693.

CVE-2026-0943

CVSS3: 7.5

nvd

19 дней назад

CVE-2026-0943

CVSS3: 7.5

debian

19 дней назад

HarfBuzz::Shaper versions before 0.032 for Perl contains a bundled lib ...

EPSS

Процентиль: 11%

0.00038

Низкий

7.5 High

CVSS3

CVE ID

CVE-2026-0943