Bug#1010671: libsdl2-ttf-dev: CVE-2022-27470 - Arbitrary memory overwrite loading glyphs and rendering text

[Moritz Muehlenhoff]

On Mon, May 09, 2022 at 12:59:42PM +0100, Simon McVittie wrote:
> If I'm understanding the issue correctly, it's only a problem if a user
> of SDL_ttf is using an untrusted TTF font file, which is a relatively
> unusual thing to do: normally games either rely on system fonts, or bundle
> a font in the game data, both of which are trusted (if only because anyone
> in a position to insert a crafted font file could equally well insert
> malicious code).

Exactly that. We don't need a DSA here I think.

Cheers,
        Moritz