EPSS
Percentile
5.1%
It was found that cache files were insufficiently validated in fontconfig. A local attacker could create a specially crafted cache file to trigger arbitrary free() calls, which in turn could lead to arbitrary code execution.
bugzilla.redhat.com/show_bug.cgi?id=1350891