[El-errata] ELSA-2026-7677 Important: Oracle Linux 8 fontforge security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Wed Apr 15 07:55:54 UTC 2026
Oracle Linux Security Advisory ELSA-2026-7677
http://linux.oracle.com/errata/ELSA-2026-7677.html
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:
x86_64:
fontforge-20200314-7.el8_10.i686.rpm
fontforge-20200314-7.el8_10.x86_64.rpm
aarch64:
fontforge-20200314-7.el8_10.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/fontforge-20200314-7.el8_10.src.rpm
Related CVEs:
CVE-2025-15269
CVE-2025-15270
CVE-2025-15275
CVE-2025-15279
Description of changes:
[20200314-7]
- Resolves: RHEL-138168
CVE-2025-15270 SFD File Parsing Remote Code Execution Vulnerability
- Resolves: RHEL-138174
CVE-2025-15279 GUtils BMP File Parsing Heap-based Buffer Overflow
- Resolves: RHEL-138190
CVE-2025-15275 SFD File Parsing Heap-based Buffer Overflow
- Resolves: RHEL-138140
CVE-2025-15269 SFD File Parsing Use-After-Free
[20200314-6]
- Resolves: RHEL-26715 - fontforge: various flaws
(CVE-2024-25081 and CVE-2024-25082)
More information about the El-errata
mailing list