AIKIDO-2026-10356
harfbuzz.harfbuzz is vulnerable to Integer Overflow
37
Low Risk
This Affects:
harfbuzz.harfbuzzTL;DR
Affected versions of this package contain an integer overflow in the stch feature handling for malicious fonts, where unchecked multiplication and addition involving repeated glyph expansion can cause the glyph count to wrap, leading to incorrect buffer size calculations. It can allow an attacker to supply a crafted font that causes undersized allocation followed by out-of-bounds writes during shaping, potentially resulting in memory corruption, process crashes, or, in some environments, code execution. An attacker might exploit this by convincing a target application to load or render a specially crafted font file, then triggering text shaping on attacker-controlled content so the malformed glyph expansion path is reached.
Who does this affect?
You are affected if you are using a version that falls within the vulnerable range.
Background info
harfbuzz.harfbuzz is vulnerable to Integer Overflow in versions 1.1.0 - 13.0.1.
How to fix this
Upgrade the harfbuzz.harfbuzz library to the patch version.
Are You Affected?
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.
SOC 2Compliant
ISO 27001Compliant