[oss-security] CVE-2025-27363: out of bounds write in FreeType <= 2.13.0

I don't know much about this bug, which seems to have been announced by Facebook yesterday. https://nvd.nist.gov/vuln/detail/CVE-2025-27363 > An out of bounds write exists in FreeType versions 2.13.0 and below when > attempting to parse font subglyph structures > related to TrueType GX and varia

Re: [oss-security] Out-of-bounds read & write in the glibc's qsort()

[ For newer subscribers, I'll mention that this is in reply to https://www.openwall.com/lists/oss-security/2024/01/30/7 ] On 31/01/24 07:39, Qualys Security Advisory wrote: > We discovered a memory corruption in the glibc's qsort() function, due > to a missing bounds check. To be vulnerable, a p