CVE-2025-15275

DOCUMENTATION: A flaw was found in FontForge. A remote attacker could exploit a heap-based buffer overflow vulnerability during SFD file parsing. This issue arises from insufficient validation of user-supplied data length before copying it to a buffer. Successful exploitation requires user interaction, such as opening a malicious SFD file, and could lead to arbitrary code execution in the context of the current user. 

            STATEMENT: This vulnerability is rated Important for Red Hat products. It allows for arbitrary code execution in FontForge when a user opens a specially crafted SFD file. This affects FontForge on Fedora 42, 43, Red Hat Enterprise Linux 6 ELS, 7 ELS, 8, 9, 10, and Red Hat In-Vehicle OS 2.0.

            MITIGATION: Users should exercise caution and avoid opening untrusted SFD (Spline Font Database) files with FontForge. If FontForge is not essential for system operation, consider removing the fontforge package to eliminate the attack vector. This can be achieved using the system's package manager, for example, sudo dnf remove fontforge on Red Hat Enterprise Linux and Fedora systems. Removing this package may impact functionality that relies on font editing capabilities.