vulnerability
SUSE: CVE-2023-25193: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:N/I:N/A:C) | Feb 4, 2023 | Apr 13, 2023 | Jan 28, 2025 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
Feb 4, 2023
Added
Apr 13, 2023
Modified
Jan 28, 2025
Description
hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger O(n^2) growth via consecutive marks during the process of looking back for base glyphs when attaching marks.
Solutions
suse-upgrade-harfbuzz-develsuse-upgrade-harfbuzz-toolssuse-upgrade-java-11-openjdksuse-upgrade-java-11-openjdk-demosuse-upgrade-java-11-openjdk-develsuse-upgrade-java-11-openjdk-headlesssuse-upgrade-java-11-openjdk-javadocsuse-upgrade-java-11-openjdk-jmodssuse-upgrade-java-11-openjdk-srcsuse-upgrade-java-17-openjdksuse-upgrade-java-17-openjdk-demosuse-upgrade-java-17-openjdk-develsuse-upgrade-java-17-openjdk-headlesssuse-upgrade-java-17-openjdk-javadocsuse-upgrade-java-17-openjdk-jmodssuse-upgrade-java-17-openjdk-srcsuse-upgrade-java-1_8_0-ibmsuse-upgrade-java-1_8_0-ibm-32bitsuse-upgrade-java-1_8_0-ibm-alsasuse-upgrade-java-1_8_0-ibm-demosuse-upgrade-java-1_8_0-ibm-develsuse-upgrade-java-1_8_0-ibm-devel-32bitsuse-upgrade-java-1_8_0-ibm-pluginsuse-upgrade-java-1_8_0-ibm-srcsuse-upgrade-libharfbuzz-gobject0suse-upgrade-libharfbuzz-gobject0-32bitsuse-upgrade-libharfbuzz-icu0suse-upgrade-libharfbuzz-icu0-32bitsuse-upgrade-libharfbuzz-subset0suse-upgrade-libharfbuzz-subset0-32bitsuse-upgrade-libharfbuzz0suse-upgrade-libharfbuzz0-32bitsuse-upgrade-typelib-1_0-harfbuzz-0_0
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.