0.001 Low
EPSS
Percentile
28.6%
FontForge 20161012 is vulnerable to a buffer over-read in ValidatePostScriptFontName (parsettf.c) resulting in DoS or code execution via a crafted otf file.
bugzilla.redhat.com/show_bug.cgi?id=1475391