Array index error in the parse_fond function in base/ftmac.c in FreeType
before 2.5.4 allows remote attackers to cause a denial of service
(out-of-bounds read) or obtain sensitive information from process memory
via a crafted FOND resource in a Mac font file.