Patch now! Warning about malware attacks on FreeType and Langflow
The US security authority CISA warns of attacks on the FreeType program library and the AI tool Langflow.
(Image: solarseven/Shutterstock.com)
Attackers are currently exploiting software vulnerabilities in FreeType and Langflow and compromising systems by executing malicious code. In both cases, security patches are available, which admins should install immediately.
FreeType is a free program library for creating characters. Langflow is an AI tool that can be used to create AI agents, for example. Both vulnerabilities have been known since March of this year. Security updates have been available since then, but these have obviously not yet been installed across the board. The US Cybersecurity & Infrastructure Security Agency (CISA) is now warning of attacks. The extent of the attacks is not yet known.
FreeType vulnerability
The vulnerability (CVE-2025-27363 "high") in FreeType threatens all versions including 2.13.0. The developers state that they have closed the gap in version 2.13.3. If the security update is not installed, attackers can trigger memory errors and thus execute malicious code. This is due to errors in the processing of font subglyph structures in connection with TrueType-GX and variable font files. Facebook security researchers have discovered the vulnerability.
Langflow vulnerability
The vulnerability (CVE-2025-3248 "critical") in the Langflow AI tool is used by remote attackers without authentication. By sending crafted HTTP requests, they can execute their own code and compromise servers. To prevent this, admins must install at least Langflow version 1.3.0.
Videos by heise
In a report, security researchers from Horizon3 describe further details of the vulnerability and explain that attacks are comparatively simple.
(des)
