Talos is releasing an advisory for four vulnerabilities that have been found within the Libgraphite library. The most severe vulnerability results from an out-of-bounds read which the attacker can use to achieve arbitrary code execution. A second vulnerability is an exploitable heap overflow. The last two vulnerabilities result in denial of service situations. To exploit these vulnerabilities, an attacker simply needs the user to run a Graphite-enabled application that renders a page using a specially crafted font that triggers one of these vulnerabilities.”]
Source: https://blog.talosintelligence.com/2016/02/vulnerability-spotlight-libgraphite.html