Summary: Metaβs Facebook security team has identified a zero-day vulnerability in the FreeType library that could allow for arbitrary code execution. The issue affects FreeType versions 2.13.0 and below, and there are reports of exploitation in the wild. Organizations are urged to update to FreeType 2.13.3 or later to mitigate the risk.
Affected: FreeType software development library, older Linux distributions
Keypoints :
- Vulnerability identified as CVE-2025-27363 with a CVSS score of 8.1.
- Affected FreeType versions include 2.13.0 and below, risking older system installations.
- Facebook advises immediate updates to version 2.13.3 or later and to monitor for suspicious activities.
Source: https://www.securityweek.com/freetype-zero-day-being-exploited-in-the-wild/
Views: 17