[ALSA-2024:2410] Moderate: harfbuzz security update
Type:
security
Severity:
moderate
Release date:
2024-05-07
Description:
HarfBuzz is an implementation of the OpenType Layout engine. Security Fix(es): * harfbuzz: allows attackers to trigger O(n^2) growth via consecutive marks (CVE-2023-25193) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 harfbuzz-devel-2.7.4-10.el9.aarch64.rpm 21f3c32bf3b43fc4e20048c53d86563226e4f5fba47f0f2da99e900bce7039da
aarch64 harfbuzz-icu-2.7.4-10.el9.aarch64.rpm 471ee13d58e222fd5c103f022ef09f8b4ff34f00f2f2a2d0ac70061c14112975
aarch64 harfbuzz-2.7.4-10.el9.aarch64.rpm 71535647603dfec9804bf768efc41d9e2430d4457a48718e4155e367beff9ad5
i686 harfbuzz-devel-2.7.4-10.el9.i686.rpm 0495b17b3ffd18013d8e12b89cbb83cb2affd697cc48bb3918e8996da8e80fe5
i686 harfbuzz-icu-2.7.4-10.el9.i686.rpm 2d8a20cb1ab01d4a3e593388261f5589a5ab6509bb2e25e6277cdd20ac6a7bc2
i686 harfbuzz-2.7.4-10.el9.i686.rpm 5157daf2ab0a03b403d37c60b150b8f0f866754714f81e3d96368e06a16339ce
ppc64le harfbuzz-icu-2.7.4-10.el9.ppc64le.rpm 3525f39070e8224be2f4bea7aa6ac7190b42d2feebefba8f19ae2a087c27dd95
ppc64le harfbuzz-2.7.4-10.el9.ppc64le.rpm 924dbeef6db0fd60c6d33e3f07f0be478cd501bb53812ef050d9d94136a3f69d
ppc64le harfbuzz-devel-2.7.4-10.el9.ppc64le.rpm 9b02224ff81ab1e0490495305952e06edb82a0c4ec67d82fc0b1d919f12cc816
s390x harfbuzz-devel-2.7.4-10.el9.s390x.rpm 37a722815691c7ef201e376bbea3145b3bc03f2186a3c341b893f95bdfd3bb2e
s390x harfbuzz-2.7.4-10.el9.s390x.rpm 41712944238648492b1c29fc8379782fe8869fc2ad9151363a710088321aa4a0
s390x harfbuzz-icu-2.7.4-10.el9.s390x.rpm 647c133c879eab3848bcd0f66ee84acbbd0f415e4898932fc06c1524a94755ee
x86_64 harfbuzz-icu-2.7.4-10.el9.x86_64.rpm 02e106f25e1ac5401b06135524113b3bce3ebb1d25fac6342fce1fdb2a59562c
x86_64 harfbuzz-devel-2.7.4-10.el9.x86_64.rpm 1ea6947ca0bb1e7b0403a027fdb1d29064f60b16f669d0ce5cca524bad7eb48f
x86_64 harfbuzz-2.7.4-10.el9.x86_64.rpm 1f81073019abe4176d4496723a89b55a349c31f507e96397a0b3efa7cea0ff61
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.