It was discovered that fontforge, a font editor, is prone to shell command injection vulnerabilities when processing specially crafted files.
https://security-tracker.debian.org/tracker/DSA-5641-1
Continue reading...
https://security-tracker.debian.org/tracker/DSA-5641-1
Continue reading...