I've just fixed a heap buffer overflow that can happen for some malformed `.ttf` files with PNG sbit glyphs. It seems that this vulnerability gets already actively used in the wild, so I ask all users to apply the corresponding commit as soon as possible.
Tomorrow I will do a 2.10.4 release. Werner _______________________________________________ Freetype-announce mailing list Freetype-announce@nongnu.org https://lists.nongnu.org/mailman/listinfo/freetype-announce