CNNVD-202601-2993 Information
CNNVD ID
CNNVD-202601-2993
Related CVE
- CNNVD Published: 2026-01-19
Description (Chinese)
MetaCPAN HarfBuzz::Shaper是MetaCPAN基金会的一个接口扩展模块。 MetaCPAN HarfBuzz::Shaper 0.032之前版本存在安全漏洞,该漏洞源于捆绑的库存在空指针取消引用,可能导致空指针取消引用。
Description (English)
MetaCPAN HarfBuzz: Shaper is an interface extension module of the MetaCPAN Foundation. MetaCPAN HarfBuzz: There is a security loophole in the previous version of Shaper 0.032, which results from the unquoted reference to the empty pointer from the tied inventory, which may lead to the cancellation of the empty pointer.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
MetaCPAN
Published
2026-01-19
Last Modified
2026-02-24
References
https://bugzilla.redhat.com/show_bug.cgi?id=2429296 https://metacpan.org/release/JV/HarfBuzz-Shaper-0.032/changes https://www.cve.org/CVERecord?id=CVE-2026-22693 https://access.redhat.com/security/cve/cve-2026-0943
Patch
https://metacpan.org/release/JV/HarfBuzz-Shaper-0.032/changes
Share on: