Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Fedora 43 mingw-harfbuzz Critical Null Pointer Dereference CVE-2026-22693

fedora
Calendar Grey January 27, 2026
Dist Fedora Esm H88
Critical patch for mingw-harfbuzz in Fedora 43 addressing CVE-2026-22693 to fix null pointer dereference issue.
Backport patch for CVE-2026-22693.

Summary

HarfBuzz is an implementation of the OpenType Layout engine.

Update Information:

Backport patch for CVE-2026-22693.

Topics%20covered

Topics Covered

security advisory critical software patch NULL pointer dereference mingw-harfbuzz fedora 43

Change Log

* Sat Jan 17 2026 Sandro Mani - 11.5.1-2 - Backport patch for CVE-2026-22693

References


[ 1 ] Bug #2429284 - CVE-2026-22693 mingw-harfbuzz: Null Pointer Dereference in harfbuzz [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2429284 [ 2 ] Bug #2429295 - CVE-2026-22693 mingw-harfbuzz: Null Pointer Dereference in harfbuzz [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2429295

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-dc77eb63ae' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: mingw-harfbuzz
Product: Fedora 43
Version: 11.5.1
Release: 2.fc43
URL: http://www.harfbuzz.org
Summary: MinGW Windows Harfbuzz library

Topics%20covered

Topics Covered

security advisory critical software patch NULL pointer dereference mingw-harfbuzz fedora 43

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here