Issued:: 2026-02-09
Updated:: 2026-02-09

RHSA-2026:2232 - Security Advisory

Overview
Updated Packages

Synopsis

Important: fontforge security update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for fontforge is now available for Red Hat Enterprise Linux 10.0 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

FontForge is a font editor for outline and bitmap fonts. It supports a range of font formats, including PostScript (ASCII and binary Type 1, some Type 3 and Type 0), TrueType, OpenType (Type2) and CID-keyed fonts.

Security Fix(es):

fontforge: FontForge: Remote Code Execution via heap-based buffer overflow in BMP file parsing (CVE-2025-15279)
fontforge: FontForge: Remote Code Execution via Use-After-Free in SFD file parsing (CVE-2025-15269)
fontforge: FontForge: Arbitrary code execution via SFD file parsing buffer overflow (CVE-2025-15275)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 10.0 x86_64
Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 10.0 ppc64le
Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 10.0 s390x
Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 10.0 aarch64

Fixes

BZ - 2426421 - CVE-2025-15279 fontforge: FontForge: Remote Code Execution via heap-based buffer overflow in BMP file parsing
BZ - 2426423 - CVE-2025-15269 fontforge: FontForge: Remote Code Execution via Use-After-Free in SFD file parsing
BZ - 2426429 - CVE-2025-15275 fontforge: FontForge: Arbitrary code execution via SFD file parsing buffer overflow

CVEs

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 10.0

SRPM
fontforge-20230101-14.el10_0.src.rpm	SHA-256: 5a3236abd69715989c87e3175656f64f016df3ebf6b4add6e077ac82f673a0c5
x86_64
fontforge-20230101-14.el10_0.x86_64.rpm	SHA-256: dee5826ed7b31774a68fe7766e4655b0761dd481c4540f8b74dfd111e39b558a
fontforge-debuginfo-20230101-14.el10_0.x86_64.rpm	SHA-256: 3dbad6c5e0a3861875e44522a07bd82073c04a44db75cb39ccbb1bec72b2ac8b
fontforge-debugsource-20230101-14.el10_0.x86_64.rpm	SHA-256: faac6aa59720f756d3d2854a16339aaa787e8dbda272eeca9f56606ee384d731

Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 10.0

SRPM
fontforge-20230101-14.el10_0.src.rpm	SHA-256: 5a3236abd69715989c87e3175656f64f016df3ebf6b4add6e077ac82f673a0c5
ppc64le
fontforge-20230101-14.el10_0.ppc64le.rpm	SHA-256: d55160d64575f4ae4b65097442a9d2e30ff4e99374ea932be6aa4fd7a0da0c59
fontforge-debuginfo-20230101-14.el10_0.ppc64le.rpm	SHA-256: 2802cc589f03975c1664015d03c36e75711e0f95434bead96ef1564db740c8b7
fontforge-debugsource-20230101-14.el10_0.ppc64le.rpm	SHA-256: 227f8c1931151cb6ffaa2d453ad814cd35f69bf2cfd11e204d4f2a3495210d4d

Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 10.0

SRPM
fontforge-20230101-14.el10_0.src.rpm	SHA-256: 5a3236abd69715989c87e3175656f64f016df3ebf6b4add6e077ac82f673a0c5
s390x
fontforge-20230101-14.el10_0.s390x.rpm	SHA-256: cf0b648f5279a1242257c48c9d87032bc3a1e023666fd2f092f948c07669fc06
fontforge-debuginfo-20230101-14.el10_0.s390x.rpm	SHA-256: 47e70a8c505f03e6a6f0f6ba0bbf7e86eeef9bb5b4a03275bc1ac5fc355368b3
fontforge-debugsource-20230101-14.el10_0.s390x.rpm	SHA-256: c6491c79480205c30266212645e5c1ce8e9f38b60d6df65f3f2f22baa7374168

Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 10.0

SRPM
fontforge-20230101-14.el10_0.src.rpm	SHA-256: 5a3236abd69715989c87e3175656f64f016df3ebf6b4add6e077ac82f673a0c5
aarch64
fontforge-20230101-14.el10_0.aarch64.rpm	SHA-256: fb559059535b3a3ca1cca1364ee87437eb4abd3caf041acd81d02b37e412ec74
fontforge-debuginfo-20230101-14.el10_0.aarch64.rpm	SHA-256: 7fa6a408476977e84fa5a5a1e6b592e8ea9c793ac982107ae7110d5c085e0c0d
fontforge-debugsource-20230101-14.el10_0.aarch64.rpm	SHA-256: a00abd3d1282b6043b578a2c3a33594a158e8db688c2062fe84cec8f35a8ebec

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation