{"id":"OSV-2023-554","summary":"Heap-buffer-overflow in OT::CmapSubtable::get_glyph","details":"OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60475\n\n```\nCrash type: Heap-buffer-overflow READ 2\nCrash state:\nOT::CmapSubtable::get_glyph\nbool OT::cmap::accelerator_t::get_glyph_from\u003cOT::CmapSubtable\u003e\nhb_ot_get_nominal_glyphs\n```\n","modified":"2023-07-10T14:02:00.983375Z","published":"2023-07-10T14:02:00.983105Z","references":[{"type":"REPORT","url":"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60475"}],"affected":[{"package":{"name":"harfbuzz","ecosystem":"OSS-Fuzz","purl":"pkg:generic/harfbuzz"},"ranges":[{"type":"GIT","repo":"https://github.com/harfbuzz/harfbuzz.git","events":[{"introduced":"d84504206c420250bfe80bee25f6a59a7177c9eb"},{"fixed":"f60dbd906a4bf89354af1ed0616a61a5099d8c1a"}]}],"ecosystem_specific":{"severity":"HIGH"},"database_specific":{"source":"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/harfbuzz/OSV-2023-554.yaml"}}],"schema_version":"1.7.3"}