{"id":"JLSEC-2025-175","summary":"hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger O(n^2) growth via con...","details":"hb-ot-layout-gsubgpos.hh in HarfBuzz through 6.0.0 allows attackers to trigger O(n^2) growth via consecutive marks during the process of looking back for base glyphs when attaching marks.","modified":"2025-11-06T23:03:15.549238Z","published":"2025-10-21T17:24:37.757Z","upstream":["CVE-2023-25193"],"database_specific":{"license":"CC-BY-4.0","sources":[{"id":"CVE-2023-25193","published":"2023-02-04T20:15:08.027Z","imported":"2025-10-21T15:02:12.901Z","url":"https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2023-25193","modified":"2025-03-25T21:15:41.240Z","html_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-25193"}]},"references":[{"type":"WEB","url":"https://chromium.googlesource.com/chromium/src/+/e1f324aa681af54101c1f2d173d92adb80e37088/DEPS#361"},{"type":"WEB","url":"https://github.com/harfbuzz/harfbuzz/blob/2822b589bc837fae6f66233e2cf2eef0f6ce8470/src/hb-ot-layout-gsubgpos.hh"},{"type":"WEB","url":"https://github.com/harfbuzz/harfbuzz/commit/85be877925ddbf34f74a1229f3ca1716bb6170dc"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KWCHWSICWVZSAXP2YAXM65JC2GR53547/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZ5M2GSAIHFPLHYJXUPQ2QDJCLWXUGO3/"},{"type":"WEB","url":"https://security.netapp.com/advisory/ntap-20230725-0006/"}],"affected":[{"package":{"name":"HarfBuzz_jll","ecosystem":"Julia","purl":"pkg:julia/HarfBuzz_jll?uuid=2e76f6c2-a576-52d4-95c1-20adfe4de566"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"8.3.1+0"}]}],"database_specific":{"source":"https://github.com/JuliaLang/SecurityAdvisories.jl/tree/generated/osv/2025/JLSEC-2025-175.json"}},{"package":{"name":"HarfBuzz_ICU_jll","ecosystem":"Julia","purl":"pkg:julia/HarfBuzz_ICU_jll?uuid=655565e8-fb53-5cb3-b0cd-aec1ca0647ea"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"8.5.0+0"}]}],"database_specific":{"source":"https://github.com/JuliaLang/SecurityAdvisories.jl/tree/generated/osv/2025/JLSEC-2025-175.json"}}],"schema_version":"1.7.3"}