Summary: | <media-libs/harfbuzz-4.4.0: integer overflow in png parsing | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | John Helmert III <ajak> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | gnome, office |
Priority: | Normal | Keywords: | PullRequest |
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://github.com/harfbuzz/harfbuzz/issues/3557 | ||
See Also: | https://github.com/gentoo/gentoo/pull/27240 | ||
Whiteboard: | A3 [glsa+] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 856673, 868348 | ||
Bug Blocks: |
Description
John Helmert III
2022-07-03 03:16:49 UTC
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=292102f1f011f30515a6fcc20cf04f8305e26670 commit 292102f1f011f30515a6fcc20cf04f8305e26670 Author: Andreas Sturmlechner <asturm@gentoo.org> AuthorDate: 2022-09-13 19:32:58 +0000 Commit: Andreas Sturmlechner <asturm@gentoo.org> CommitDate: 2022-09-14 07:31:38 +0000 media-libs/harfbuzz: cleanup vulnerable 4.3.0 Bug: https://bugs.gentoo.org/856049 Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org> media-libs/harfbuzz/Manifest | 1 - media-libs/harfbuzz/harfbuzz-4.3.0.ebuild | 98 ------------------------------- 2 files changed, 99 deletions(-) GLSA request filed GLSA released, all done! The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/data/glsa.git/commit/?id=1733373e809dacf94df6a7f9b4e247232c6d7154 commit 1733373e809dacf94df6a7f9b4e247232c6d7154 Author: GLSAMaker <glsamaker@gentoo.org> AuthorDate: 2022-09-25 13:35:18 +0000 Commit: John Helmert III <ajak@gentoo.org> CommitDate: 2022-09-25 13:42:21 +0000 [ GLSA 202209-11 ] HarfBuzz: Multiple vulnerabilities Bug: https://bugs.gentoo.org/830372 Bug: https://bugs.gentoo.org/856049 Signed-off-by: GLSAMaker <glsamaker@gentoo.org> Signed-off-by: John Helmert III <ajak@gentoo.org> glsa-202209-11.xml | 44 ++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 44 insertions(+) |