See, this is what winds up us FOSS weenies
"Fixing the underlying flaw exploited by Duqu involves the resolution of a problem in how Windows kernel mode driver handles TrueType font files."
WTF is the Windows KERNEL (!) doing handling fonts? This is the result of their 10 year 'security initiative', the kernel is still doing fucking brain dead things like handling fonts. Give me a break.