This image includes Freetype 2.7-r1 containing the following vulnerabilities:
FreeType 2 before 2017-03-26 has an out-of-bounds write caused by a heap-based buffer overflow related to the t1_builder_close_contour function in psaux/psobjs.c.
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8287
FreeType 2 before 2017-03-24 has an out-of-bounds write caused by a heap-based buffer overflow related to the t1_decoder_parse_charstrings function in psaux/t1decode.c.
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8105
