[ALSA-2024:2980] Moderate: harfbuzz security update
Type:
security
Severity:
moderate
Release date:
2024-05-29
Description:
HarfBuzz is an implementation of the OpenType Layout engine. Security Fix(es): * harfbuzz: allows attackers to trigger O(n^2) growth via consecutive marks (CVE-2023-25193) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 harfbuzz-1.7.5-4.el8.aarch64.rpm 028487d65e7b7cf679b9ffd98b603d14706e9c4be0e113d09bf34639be0161f4
aarch64 harfbuzz-devel-1.7.5-4.el8.aarch64.rpm 15d790d6619d384b6d2eff3e77c2a06a215eaa7a699e8a09f84075ff263ef40a
aarch64 harfbuzz-icu-1.7.5-4.el8.aarch64.rpm e6eb5f717d724359c75d92b4702263f315a38bfe00628a042569e0d592417702
i686 harfbuzz-icu-1.7.5-4.el8.i686.rpm 2ab6d22db32e2a4feb8215b4c1f3bb5df43bc5630fbc246cb075a1b749c3b724
i686 harfbuzz-devel-1.7.5-4.el8.i686.rpm 7dba36791f7c52661c31d4bacc3b3dac31c51d9038011e6e55b852ff8e3ef7f0
i686 harfbuzz-1.7.5-4.el8.i686.rpm adb6442672472000dab39eb492a505ce71f5f09824a40a2d1721596692d518cf
ppc64le harfbuzz-devel-1.7.5-4.el8.ppc64le.rpm 2a8826b886e013883af397294819ee7e4a31824c28c9febc1d564e47e4e9eb72
ppc64le harfbuzz-1.7.5-4.el8.ppc64le.rpm 7b117f278cd2b06532e6f562ef3651d8d272c77fb67ac804a815537e0767b1e7
ppc64le harfbuzz-icu-1.7.5-4.el8.ppc64le.rpm 87195076cbf378f9a06964d0ab314650ed019747ecde67a34bfeaf3de40f472a
s390x harfbuzz-devel-1.7.5-4.el8.s390x.rpm 480fd49d5c2627942c36643229c512820329993627ae669ce3619c4432c74fe7
s390x harfbuzz-icu-1.7.5-4.el8.s390x.rpm 8f486555b7c686981d9a5d5d37b086f4da0d8bb4afafe1b5fa05f187b2b79e7e
s390x harfbuzz-1.7.5-4.el8.s390x.rpm 974074aa88e6239120580ea1f1cf1e7c571b3a7085b210ece0402c57909fd5d9
x86_64 harfbuzz-icu-1.7.5-4.el8.x86_64.rpm 16e1d3f46bbd2172c331d5da237ac6b81ed46a27a943a901644642b5c9fdf959
x86_64 harfbuzz-1.7.5-4.el8.x86_64.rpm 61a039f3de406bc5ca3a761bcbc36c4724832a209c45187d25568c872225a59a
x86_64 harfbuzz-devel-1.7.5-4.el8.x86_64.rpm c8666dc12f6fc440c3074f22c19a813168a7a375e83db5f9f83033c2a8a356b3
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.