SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-199

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-199

Security update for python-FontTools

Type: security

Severity: moderate

Issued: 2026-01-21

Description:

This update for python-FontTools fixes the following issues:

- CVE-2025-66034: Fixed arbitrary file write vulnerability that could lead to remote code execution (bsc#1254366).

References

CVE: CVE-2025-66034
Bugzilla: 1254366 VUL-0: CVE-2025-66034: python-FontTools: In versions from 4.33.0 to before 4.60.2, the fonttools varLib has an arbitrary file write vulnerability that leads to remote code execution

Packages

python-FontTools-4.47.2-150600.3.3.1