Red Hat Security Advisory: fontforge security update
Multiple vulnerabilities in FontForge, a font editor supporting various font formats, have been identified and addressed by Red Hat. These include remote code execution via a heap-based buffer overflow in BMP file parsing (CVE-2025-15279), remote code execution via a use-after-free in SFD file parsing (CVE-2025-15269), and arbitrary code execution via a buffer overflow in SFD file parsing (CVE-2025-15275). The vulnerabilities affect Red Hat Enterprise Linux 10 and related CodeReady Linux Builder products. Red Hat has released updated packages to fix these issues. No known exploits in the wild have been reported. The advisory rates the security impact as Important (high severity).
AI Analysis
Technical Summary
Red Hat Product Security issued an advisory (RHSA-2026:2230) for FontForge vulnerabilities affecting Red Hat Enterprise Linux 10 and CodeReady Linux Builder. The issues include a heap-based buffer overflow in BMP parsing (CVE-2025-15279), a use-after-free in SFD parsing (CVE-2025-15269), and a buffer overflow in SFD parsing (CVE-2025-15275), all leading to remote or arbitrary code execution. These vulnerabilities are classified under CWE-416 (Use After Free) and CWE-122 (Heap-based Buffer Overflow). Red Hat has provided updated packages to remediate these vulnerabilities. The advisory references detailed CVE pages for further information and provides links to updated RPM packages for multiple architectures.
Potential Impact
Successful exploitation of these vulnerabilities could allow an attacker to execute arbitrary code remotely by crafting malicious BMP or SFD font files. This could lead to full compromise of affected systems running vulnerable versions of FontForge on Red Hat Enterprise Linux 10 and related products. However, no known exploits in the wild have been reported at this time.
Mitigation Recommendations
Red Hat has released updated FontForge packages that address these vulnerabilities. Users of affected Red Hat Enterprise Linux 10 and CodeReady Linux Builder versions should apply the official security update as detailed in Red Hat advisory RHSA-2026:2230. The vendor advisory provides instructions and links to updated packages for multiple architectures. Patch status is confirmed as an official fix available from Red Hat. No additional mitigation steps are indicated beyond applying the update.
Red Hat Security Advisory: fontforge security update
Description
Multiple vulnerabilities in FontForge, a font editor supporting various font formats, have been identified and addressed by Red Hat. These include remote code execution via a heap-based buffer overflow in BMP file parsing (CVE-2025-15279), remote code execution via a use-after-free in SFD file parsing (CVE-2025-15269), and arbitrary code execution via a buffer overflow in SFD file parsing (CVE-2025-15275). The vulnerabilities affect Red Hat Enterprise Linux 10 and related CodeReady Linux Builder products. Red Hat has released updated packages to fix these issues. No known exploits in the wild have been reported. The advisory rates the security impact as Important (high severity).
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
Red Hat Product Security issued an advisory (RHSA-2026:2230) for FontForge vulnerabilities affecting Red Hat Enterprise Linux 10 and CodeReady Linux Builder. The issues include a heap-based buffer overflow in BMP parsing (CVE-2025-15279), a use-after-free in SFD parsing (CVE-2025-15269), and a buffer overflow in SFD parsing (CVE-2025-15275), all leading to remote or arbitrary code execution. These vulnerabilities are classified under CWE-416 (Use After Free) and CWE-122 (Heap-based Buffer Overflow). Red Hat has provided updated packages to remediate these vulnerabilities. The advisory references detailed CVE pages for further information and provides links to updated RPM packages for multiple architectures.
Potential Impact
Successful exploitation of these vulnerabilities could allow an attacker to execute arbitrary code remotely by crafting malicious BMP or SFD font files. This could lead to full compromise of affected systems running vulnerable versions of FontForge on Red Hat Enterprise Linux 10 and related products. However, no known exploits in the wild have been reported at this time.
Mitigation Recommendations
Red Hat has released updated FontForge packages that address these vulnerabilities. Users of affected Red Hat Enterprise Linux 10 and CodeReady Linux Builder versions should apply the official security update as detailed in Red Hat advisory RHSA-2026:2230. The vendor advisory provides instructions and links to updated packages for multiple architectures. Patch status is confirmed as an official fix available from Red Hat. No additional mitigation steps are indicated beyond applying the update.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2026:2230
- Cve Count
- 3
- Additional Cves
- ["CVE-2025-15275","CVE-2025-15279"]
- Cvss Version
- null
Threat ID: 6a248d78e29bf47b50d6534f
Added to database: 6/6/2026, 9:13:28 PM
Last enriched: 6/6/2026, 9:19:33 PM
Last updated: 6/7/2026, 3:59:13 AM
Views: 4
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.