CVE-2024-56732 | HarfBuzz up to 10.0.1 hb_cairo_glyphs_from_buffer heap-based overflow (GHSA-qmp9-xqm5-jh6m)

Inserito da Angelo Barbosa | Dic 27, 2024 | CVE

A vulnerability was found in HarfBuzz up to 10.0.1. It has been declared as very critical. This vulnerability affects the function hb_cairo_glyphs_from_buffer. The manipulation leads to heap-based buffer overflow.

This vulnerability was named CVE-2024-56732. The attack can be initiated remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-56732 | HarfBuzz up to 10.0.1 hb_cairo_glyphs_from_buffer heap-based overflow (GHSA-qmp9-xqm5-jh6m)

Post correlati

CVE-2024-23658 | Unisoc S8000 Camera Driver denial of service

CVE-2024-56444 | Huawei HarmonyOS 5.0.0 UIExtension Module access control

CVE-2024-54124 | Click Studios Passwordstate 8.3 Build 8397/8.9/9811 Edit Folder Screen permission

CVE-2024-34943 | Tenda FH1206 1.2.0.8(8155)_EN NatStaticSetting page stack-based overflow