On Sat, Jan 10, 2026 at 02:08:43PM +0100, Salvatore Bonaccorso wrote: > Source: harfbuzz > Version: 12.3.0-3 > > CVE-2026-22693[0]: > | HarfBuzz is a text shaping engine. Prior to version 12.3.0, a null > | pointer dereference vulnerability exists in the > | SubtableUnicodesCache::create function located in src/hb-ot-cmap- > | table.hh. The function fails to check if hb_malloc returns NULL > | before using placement new to construct an object at the returned > | pointer address. When hb_malloc fails to allocate memory (which can > | occur in low-memory conditions or when using custom allocators that > | simulate allocation failures), it returns NULL. The code then > | attempts to call the constructor on this null pointer using > | placement new syntax, resulting in undefined behavior and a > | Segmentation Fault. This issue has been patched in version 12.3.0. ---end quoted text---
If the CVE has been fixed in 12.3.0, why is the bug filed against 12.3.0-3 ? -- أحمد المحمودي (Ahmed El-Mahmoudy) Digital design engineer GPG KeyIDs: 4096R/A7EF5671 2048R/EDDDA1B7 GPG Fingerprints: 6E2E E4BB 72E2 F417 D066 6ABF 7B30 B496 A7EF 5761 8206 A196 2084 7E6D 0DF8 B176 BC19 6A94 EDDD A1B7
signature.asc
Description: PGP signature
