fontforge

Top products

The 15 most recently published vulnerabilities affecting fontforge.

• CVE-2025-15279FontForge GUtils BMP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability7.8Dec 31, 2025
• CVE-2025-15278FontForge GUtils XBM File Parsing Integer Overflow Remote Code Execution Vulnerability7.8Dec 31, 2025
• CVE-2025-15277FontForge GUtils SGI File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability7.8Dec 31, 2025
• CVE-2025-15276FontForge SFD File Parsing Deserialization of Untrusted Data Remote Code Execution Vulnerability7.8Dec 31, 2025
• CVE-2025-15280FontForge SFD File Parsing Use-After-Free Remote Code Execution Vulnerability8.8Dec 31, 2025
• CVE-2025-15275FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability8.8Dec 31, 2025
• CVE-2025-15274FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability8.8Dec 31, 2025
• CVE-2025-15273FontForge PFB File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability8.8Dec 31, 2025
• CVE-2025-15272FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability8.8Dec 31, 2025
• CVE-2025-15271FontForge SFD File Parsing Improper Validation of Array Index Remote Code Execution Vulnerability8.8Dec 31, 2025
• CVE-2025-15270FontForge SFD File Parsing Improper Validation of Array Index Remote Code Execution Vulnerability8.8Dec 31, 2025
• CVE-2025-15269FontForge SFD File Parsing Use-After-Free Remote Code Execution Vulnerability8.8Dec 31, 2025
• CVE-2025-50951FontForge v20230101 was discovered to contain a memory leak via the utf7toutf8_copy function at /fontforge/sfd.c.6.5Oct 23, 2025
• CVE-2025-50949FontForge v20230101 was discovered to contain a memory leak via the component DlgCreate8.6.5Oct 23, 2025
• CVE-2024-25082Splinefont in FontForge through 20230101 allows command injection via crafted archives or compressed files.6.5Feb 26, 2024