diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2022-06-23 08:35:10 +0200 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2022-06-23 08:35:10 +0200 |
| commit | 255eefbc38c04370d53a6280641208663fc04488 (patch) | |
| tree | 90fc7e2df7f04f4419f95d863215148e394d369d | |
| parent | 5b96c6563317bdb6246160afa89341e2cf014566 (diff) | |
Add CVE-2022-33068/harfbuzz
| -rw-r--r-- | data/CVE/list | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/data/CVE/list b/data/CVE/list index f64c94bde3..194e34a4de 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -2971,7 +2971,9 @@ CVE-2022-33070 (Protobuf-c v1.4.0 was discovered to contain an invalid arithmeti CVE-2022-33069 (Ethereum Solidity v0.8.14 contains an assertion failure via SMTEncoder ...) TODO: check CVE-2022-33068 (An integer overflow in the component hb-ot-shape-fallback.cc of Harfbu ...) - TODO: check + - harfbuzz <unfixed> + NOTE: https://github.com/harfbuzz/harfbuzz/issues/3557 + NOTE: https://github.com/harfbuzz/harfbuzz/commit/62e803b36173fd096d7ad460dd1d1db9be542593 CVE-2022-33067 (Lrzip v0.651 was discovered to contain multiple invalid arithmetic shi ...) TODO: check CVE-2022-33066 |