opentype

An integer overflow discovered in FreeType’s variable-font parsing code has been assigned CVE-2026-23865 and fixed in upstream FreeType 2.14.2; administrators, packagers, and application maintainers should treat this as a prompt to verify and, where necessary, deploy updated packages immediately...

In a significant move impacting users who have relied on Adobe Type 1 fonts, Microsoft has officially announced that Windows 11 will discontinue support for these legacy PostScript fonts. This decision comes almost eighteen months after Adobe itself marked the retirement of the PostScript Type 1...

In this post, we’ll introduce you to a text technology called color fonts. We’ll discuss what color fonts are, when they can be useful and how to use them in your Windows 10 apps. What are color fonts? Color fonts, also referred to as “multicolor fonts” or “chromatic fonts,” are a relatively...

Severity Rating: Critical Revision Note: V1.1 (September 8, 2015): Revised bulletin to correct the security impact and the vulnerability information for CVE-2015-2506 (from denial of service to elevation of privilege). This is an informational change only. Summary: This security update resolves...

Severity Rating: Critical Revision Note: V1.0 (July 20, 2015): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a user opens a specially crafted document or visits an untrusted webpage that...

Hi all, I have pasted some English alphabet OpenType font files into control panel / appearance and personalisation / fonts but they do not show up in the fonts folder. If I try to paste the files again it tells me "the gotham light file font is already installed - do you want to replace it?"...

Severity Rating: Critical Revision Note: (October 8, 2013) Bulletin published. Summary: This security update resolves seven privately reported vulnerabilities in Microsoft Windows. The most severe of these vulnerabilities could allow remote code execution if a user views shared content that...

Severity Rating: Critical Revision Note: V1.0 (October 8, 2013): Bulletin published. Summary: This security update resolves two privately reported vulnerabilities and one publicly disclosed vulnerability in Microsoft .NET Framework. The most severe of the vulnerabilities could allow remote code...

Severity Rating: Critical Revision Note: V1.0 (August 13, 2013): Bulletin published. Summary: This security update resolves a privately reported vulnerability in the Unicode Scripts Processor included in Microsoft Windows. The vulnerability could allow remote code execution if a user viewed a...

Severity Rating: Critical Revision Note: V2.1 (July 9, 2013): Bulletin revised to announce a detection change that excludes Windows 7 language packs from the 2485376 update for Windows XP Professional x64 Edition Service Pack 2. This is a detection change only. Customers who have already...

Severity Rating: Critical Revision Note: V2.1 (July 9, 2013): Bulletin revised to announce a detection change that excludes Windows 7 language packs from the 2485376 update. This is a detection change only. Customers who have already successfully updated their systems do not need to...

Severity Rating: Critical Revision Note: V1.0 (December 11, 2012): Bulletin published. Summary: This security update resolves one publicly disclosed vulnerability and one privately reported vulnerability in Windows. The most severe of these vulnerabilities could allow...

Severity Rating: Critical Revision Note: V1.0 (December 11, 2012): Bulletin published. Summary: This security update resolves one publicly disclosed vulnerability and one privately reported vulnerability in Windows. The most severe of these vulnerabilities could allow...

Severity Rating: Critical Revision Note: V1.0 (December 11, 2012): Bulletin published. Summary: This security update resolves one publicly disclosed vulnerability and one privately reported vulnerability in Windows. The most severe of these vulnerabilities could allow...

Resolves a vulnerability in the OpenType Compact Font Format (CFF) driver that could allow remote code execution if a user views content rendered in a specially crafted CFF font. More...

Resolves a vulnerability in Windows kernel-mode drivers that could allow remote code execution if a user navigates to a network share that contains a specially crafted OpenType font (OTF). More...

Resolves a vulnerability in a Microsoft component, the Embedded OpenType (EOT) Font Engine. The vulnerability could allow remote code execution. More...

Resolves a vulnerability in the Windows OpenType Compact Font Format (CFF) driver that could allow elevation of privileges if a user views content that is rendered in a specially crafted CFF font. Link Removed

Resolves a vulnerability in Windows that could allow remote code execution if a user viewed content rendered in a specially crafted Embedded OpenType (EOT) font in any of the three client applications that can render EOT fonts. More...

Severity Rating: Critical Revision Note: V1.0 (June 14, 2011): Bulletin published. Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a user visits a network share (or visits...