I wonder if libfreetype on Kindle is patched against this kind of attacks:
http://esec-lab.sogeti.com/post/Anal...3-font-exploit
https://github.com/comex/star_
There is support for custom fonts in /mnt/us/fonts, we can also run PDFs or websites with embedded fonts. I think I'll dig into this over weekend, but any help will be appreciated.