Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Fedora 42: FontForge Important Memory Leak CVE-2025-50949 Advisory

fedora
Calendar Grey November 6, 2025
Dist Fedora Esm H88
CVE-2025-50949 affects fontforge, a font editor in Fedora 42, addressing memory leak issues. Read more for details.
CVE-2025-50949

Summary

FontForge (former PfaEdit) is a font editor for outline and bitmap

fonts. It supports a range of font formats, including PostScript

(ASCII and binary Type 1, some Type 3 and Type 0), TrueType, OpenType

(Type2) and CID-keyed fonts.

Update Information:

CVE-2025-50949

Topics%20covered

Topics Covered

security advisory fedora update important memory leak fontforge

Change Log

* Tue Oct 28 2025 Parag Nemade - 20230101-17 - Move to use %autosetup macro so that we will not forget to apply patches * Mon Oct 27 2025 Parag Nemade - 20230101-16 - Resolves: CVE-2025-50949

References


[ 1 ] Bug #2406133 - CVE-2025-50949 fontforge: Fontforge memory leak [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2406133

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-6e501740b2' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: fontforge
Product: Fedora 42
Version: 20230101
Release: 17.fc42
URL: https://fontforge.org/
Summary: Outline and bitmap font editor

Topics%20covered

Topics Covered

security advisory fedora update important memory leak fontforge

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here