CVE-2025-27363

CVSS v3.1

8.1

High

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions FreeType versions 2.13.0 and below

Description FreeType is a free, high-quality, portable font engine. A vulnerability exists in versions 2.13.0 and below due to an out-of-bounds write when parsing font subglyph structures related to TrueType GX and variable font files. The vulnerable code assigns a signed short value to an unsigned long, causing a buffer overflow and potentially leading to arbitrary code execution. This vulnerability has been actively exploited in the wild and affects Android systems, as well as potentially other platforms utilizing the FreeType library. The vulnerability has been assigned CVE-2025-27363.

Recommendations Upgrade to a version of FreeType newer than 2.13.0.

Fix

DoS

LPE

RCE

Memory Corruption

Out of bounds Read

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-125CWE-79CWE-1395

Related Identifiers

ALSA-2025:3421

ALSA-2025:8292

ASB-A-399065987

BDU:2025-02719

BDU:2025-06595

CESA-2025_3421

CESA-2025_8292

CVE-2025-27363

DLA-4104-1

DSA-5880-1

GHSA-2MHW-8QCG-GR96

INFSA-2025_3407

INFSA-2025_3421

INFSA-2025_8292

MGASA-2025-0099

OESA-2025-1300

OPENSUSE-SU-2025_0998-1

RHSA-2025:3382

RHSA-2025:3383

RHSA-2025:3384

RHSA-2025:3385

RHSA-2025:3386

RHSA-2025:3387

RHSA-2025:3393

RHSA-2025:3395

RHSA-2025:3407

RHSA-2025:3421

RHSA-2025:8195

RHSA-2025:8219

RHSA-2025:8253

RHSA-2025:8292

RHSA-2025:9380

RHSA-2025_3407

RHSA-2025_3421

RHSA-2025_8292

ROSA-SA-2025-2864

ROSA-SA-2025-2867

SUSE-SU-2025:0960-1

SUSE-SU-2025:0998-1

SUSE-SU-2025_0960-1

SUSE-SU-2025_0998-1

USN-7352-1

USN-7352-2

Affected Products

Almalinux

Astra Linux

Centos

Debian

Freetype

Linuxmint

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

CVE-2025-27363

Weakness Enumeration

Related Identifiers

Affected Products

References · 397