Login Sign Up

CVE-2026-0943

7.5 HIGH
Denial of Service

📋 TL;DR

This vulnerability involves a null pointer dereference in the bundled HarfBuzz library within HarfBuzz::Shaper for Perl. It could allow attackers to cause denial of service or potentially execute arbitrary code by exploiting the null pointer dereference. Affected systems are those running HarfBuzz::Shaper versions before 0.032.

💻 Affected Systems

Products:
  • HarfBuzz::Shaper for Perl
Versions: All versions before 0.032
Operating Systems: All operating systems running Perl with HarfBuzz::Shaper
Default Config Vulnerable: ⚠️ Yes
Notes: The vulnerability is in the bundled HarfBuzz library version 8.4.0 or earlier included as hb_src.tar.gz.

📦 What is this software?

Harfbuzz\ by Jv

View all CVEs affecting Harfbuzz\ →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete system compromise if the null pointer dereference can be leveraged for memory corruption attacks.

🟠

Likely Case

Application crash or denial of service due to null pointer dereference causing segmentation faults.

🟢

If Mitigated

Minimal impact if the application runs with proper memory protections and isolation.

🌐 Internet-Facing: MEDIUM - Applications using this library that process untrusted input could be vulnerable to DoS attacks.
🏢 Internal Only: LOW - Internal systems with controlled input sources face reduced risk.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ⚠️ Yes
Complexity: MEDIUM

Exploitation requires triggering the null pointer dereference through crafted input to the HarfBuzz library.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 0.032

Vendor Advisory: https://metacpan.org/release/JV/HarfBuzz-Shaper-0.032/changes

Restart Required: Yes

Instructions:

1. Update HarfBuzz::Shaper to version 0.032 or later using CPAN: 'cpan HarfBuzz::Shaper'. 2. Restart any services or applications using the library.

🔧 Temporary Workarounds

Input Validation

all

Implement strict input validation to prevent malicious input from reaching the HarfBuzz library.

Memory Protection

linux

Enable ASLR and other memory protection mechanisms to reduce impact if exploitation occurs.

sysctl -w kernel.randomize_va_space=2

🧯 If You Can't Patch

  • Isolate affected systems from untrusted networks and inputs.
  • Implement application-level firewalls to filter input to vulnerable components.

🔍 How to Verify

Check if Vulnerable:

Check the installed version of HarfBuzz::Shaper: 'perl -MHarfBuzz::Shaper -e "print $HarfBuzz::Shaper::VERSION\n"'

Check Version:

perl -MHarfBuzz::Shaper -e "print $HarfBuzz::Shaper::VERSION\n"

Verify Fix Applied:

Verify version is 0.032 or higher using the same command and ensure no crashes occur with normal operation.

📡 Detection & Monitoring

Log Indicators:

  • Segmentation fault errors in application logs
  • Unexpected process termination of Perl applications using HarfBuzz::Shaper

Network Indicators:

  • Unusual traffic patterns to applications using text processing libraries

SIEM Query:

source="application.logs" AND ("segmentation fault" OR "null pointer") AND process="perl"

📊 Metadata

CVE ID: CVE-2026-0943
CVSS v3 Score: 7.5 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CWE: CWE-476
Published: January 19, 2026
Last Updated: March 4, 2026

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2026-0943, you might also want to check these:

CVE-2022-36648 10.0

This CVE describes a vulnerability in QEMU's hardware emulation where a malformed program executed i...

Same vulnerability type (CWE-476)
CVE-2022-30592 9.8

This vulnerability in LiteSpeed QUIC (LSQUIC) before version 3.1.0 involves improper handling of MAX...

Same vulnerability type (CWE-476)
CVE-2023-47003 9.8

A NULL pointer dereference vulnerability in RedisGraph allows attackers to execute arbitrary code or...

Same vulnerability type (CWE-476)