EPSS
Percentile
46.9%
FontForge 20161012 is vulnerable to a heap-based buffer overflow in readcffset (parsettf.c) resulting in DoS or code execution via a crafted otf file.
bugzilla.redhat.com/show_bug.cgi?id=1475392