OVAL Reference oval:org.opensuse.security:def:202325193

Oval Definition:

oval:org.opensuse.security:def:202325193

Revision Date:	2023-06-22	Version:	1
Title:	CVE-2023-25193
Description:	hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger O(n^2) growth via consecutive marks during the process of looking back for base glyphs when attaching marks.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	Mitre CVE-2023-25193 SUSE CVE-2023-25193 SUSE-CU-2023:1147-1 SUSE-CU-2023:1148-1 SUSE-SU-2023:1852-1 SUSE-SU-2023:1820-1 SUSE-SU-2023:1821-1 SUSE-SU-2023:1822-1
Platform(s):	SUSE Linux Enterprise Desktop 15 SP5 SUSE Linux Enterprise High Performance Computing 15 SP5 SUSE Linux Enterprise Micro 5.3 SUSE Linux Enterprise Micro 5.4 SUSE Linux Enterprise Module for Basesystem 15 SP5 SUSE Linux Enterprise Server 15 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SP5	Product(s):
Definition Synopsis
SUSE Linux Enterprise Micro 5.3 is installed AND Package Information libharfbuzz-gobject0 is affected OR libharfbuzz0 is affected OR typelib-1_0-HarfBuzz-0_0 is affected
Definition Synopsis
SUSE Linux Enterprise Micro 5.4 is installed AND Package Information libharfbuzz-gobject0-3.4.0-150400.3.6.1 is installed OR libharfbuzz0-3.4.0-150400.3.6.1 is installed OR typelib-1_0-HarfBuzz-0_0-3.4.0-150400.3.6.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 15 SP5 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP5 is installed OR SUSE Linux Enterprise Server 15 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed AND Package Information harfbuzz-devel-3.4.0-150400.3.6.1 is installed OR libharfbuzz-gobject0-3.4.0-150400.3.6.1 is installed OR libharfbuzz-icu0-3.4.0-150400.3.6.1 is installed OR libharfbuzz-subset0-3.4.0-150400.3.6.1 is installed OR libharfbuzz0-3.4.0-150400.3.6.1 is installed OR libharfbuzz0-32bit-3.4.0-150400.3.6.1 is installed OR typelib-1_0-HarfBuzz-0_0-3.4.0-150400.3.6.1 is installed

BACK