libfontforge.so is vulnerable to remote code execution (RCE) attacks. A malicious user can pass an otf
file to the PSCharStringToSplines
function in psread.c
to cause a buffer overflow that can crash the application or cause arbitrary code execution.