Stay Connected:

ELSA-2026-2230

ELSA-2026-2230 - fontforge security update

Type:SECURITY
Impact:IMPORTANT
Release Date:2026-02-09

Description


[20230101-14]
- Resolves: RHEL-138159
CVE-2025-15279 GUtils BMP File Parsing Heap-based Buffer Overflow
- Resolves: RHEL-138144
CVE-2025-15275 SFD File Parsing Heap-based Buffer Overflow
- Resolves: RHEL-138126
CVE-2025-15269 SFD File Parsing Use-After-Free


Related CVEs


CVE-2025-15269
CVE-2025-15275
CVE-2025-15279

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 10 (aarch64) fontforge-20230101-14.el10_1.src.rpmb34f11f51b31fdd78ca26e5d43282bb9f4aac1e34c431b223e8fd0073b17a832-ol10_aarch64_codeready_builder
fontforge-20230101-14.el10_1.aarch64.rpmeb6ebb6c778fde909d315d9299566bec45d16417644e5a1ad33ab88a165fccb7-ol10_aarch64_codeready_builder
Oracle Linux 10 (x86_64) fontforge-20230101-14.el10_1.src.rpmb34f11f51b31fdd78ca26e5d43282bb9f4aac1e34c431b223e8fd0073b17a832-ol10_x86_64_codeready_builder
fontforge-20230101-14.el10_1.x86_64.rpm1be372e055ef3667890abb810069a895ac8f703cb137b17b095f4b57a8695d88-ol10_x86_64_codeready_builder



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights