Huh. I figured we'd see more of this, didn't figure on so soon. Interesting note: Truetype fonts are actually their own Turing-complete language. Which means the Halting Problem applies, which means you can never demonstrate that a TTF font won't do something nasty when rendered. Which means that the Windows kernel parsing fonts on behalf of userspace applications is a profoundly bad design - it can literally not be made secure.
