CVE-2024-56732 | HarfBuzz up to 10.0.1 hb_cairo_glyphs_from_buffer heap-based overflow (GHSA-qmp9-xqm5-jh6m)

Inserito da Angelo Barbosa | Dic 27, 2024 | CVE

A vulnerability was found in HarfBuzz up to 10.0.1. It has been declared as very critical. This vulnerability affects the function hb_cairo_glyphs_from_buffer. The manipulation leads to heap-based buffer overflow.

This vulnerability was named CVE-2024-56732. The attack can be initiated remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-56732 | HarfBuzz up to 10.0.1 hb_cairo_glyphs_from_buffer heap-based overflow (GHSA-qmp9-xqm5-jh6m)

Post correlati

CVE-2024-2350 | Clever Addons for Elementor Plugin up to 2.1.9 on WordPress CAFE Widgets cross site scripting

CVE-2024-52032 | Mattermost up to 9.11.2/10.0.0 Channel Name information disclosure

CVE-2024-33147 | J2EEFAST 2.7.0 authRoleList sql_filter sql injection

CVE-2024-53980 | RIOT-OS up to 2024.07 infinite loop (GHSA-m75q-8vj8-wppw)