FontForge contains multiple critical vulnerabilities that allow remote code execution through memory corruption issues in font file parsing. Specifically, CVE-2025-15279 is a heap-based buffer overflow in BMP file parsing, CVE-2025-15269 is a use-after-free in SFD file parsing, and CVE-2025-15275 is a buffer overflow in SFD file parsing. These vulnerabilities affect Red Hat Enterprise Linux 10.0 Extended Update Support versions of FontForge. Red Hat has released security updates to fix these issues as detailed in advisory RHSA-2026:2232. The vulnerabilities are rated with high severity by Red Hat Product Security. No CVSS scores are provided in the advisory, but the impact involves remote code execution, which is significant.

Successful exploitation of these vulnerabilities could allow an attacker to execute arbitrary code on the affected system remotely by supplying specially crafted font files. This could lead to full system compromise depending on the privileges of the FontForge process. The vulnerabilities affect multiple architectures supported by Red Hat CodeReady Linux Builder for Extended Update Support 10.0. No known exploits in the wild have been reported, but the impact is considered high due to the potential for remote code execution.

Red Hat has released updated FontForge packages that address these vulnerabilities. Users of Red Hat Enterprise Linux 10.0 Extended Update Support and related products should apply the security updates provided in advisory RHSA-2026:2232 promptly. Detailed instructions for applying the update are available at https://access.redhat.com/articles/11258. Since this is not a cloud service, remediation requires manual patching by system administrators. There are no vendor statements indicating that no action is required or that the issue is already mitigated without patching.