Ubuntu 16.04 ESM USN-5746-1 Severe: HarfBuzz Denial Of Service

ubuntu

November 28, 2022

HarfBuzz could be made to crash if it received specially crafted input.

Summary

HarfBuzz could be made to crash if it received specially crafted

input.

Software Description:

- harfbuzz: OpenType text shaping engine

Details:

Behzad Najjarpour Jabbari discovered that HarfBuzz incorrectly handled

certain inputs. A remote attacker could possibly use this issue to cause

a denial of service.

Topics Covered

security advisory denial of service software update ubuntu input handling harfbuzz

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 16.04 ESM:
   libharfbuzz-bin                 1.0.1-1ubuntu0.1+esm1
   libharfbuzz0b                   1.0.1-1ubuntu0.1+esm1

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-5746-1

CVE-2015-9274

Severity

critical

Lowest

Low

Medium

High

Critical

November 28, 2022

Topics Covered

security advisory denial of service software update ubuntu input handling harfbuzz

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Ubuntu 16.04 ESM USN-5746-1 Severe: HarfBuzz Denial Of Service

Summary

Topics Covered

Update Instructions

References

Topics Covered

Package Information

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Ubuntu 16.04 ESM USN-5746-1 Severe: HarfBuzz Denial Of Service

Summary

Topics Covered

Update Instructions

References

Topics Covered

Package Information

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!