Facebook has disclosed a high-severity vulnerability (CVE-2025-27363) in FreeType, an open-source font rendering library used across Linux, Android, and various platforms. The flaw, an out-of-bounds write in versions up to 2.13.0, can lead to arbitrary code execution and has reportedly been exploited in attacks. Users and administrators are urged to update to FreeType 2.13.3 immediately to mitigate the risk, as older vulnerable versions may remain in use across numerous applications.

‍