There is a heap-based buffer over-read in the function ft_font_face_hash of gxps-fonts.c in libgxps through 0.3.0. A crafted input will lead to a remote denial of service attack. (CVE-2018-10733)
Impact
There is no impact; F5 products are not affected by this vulnerability.