Lucene search
China National Vulnerability DatabaseCNVD-2023-11779HistoryOct 18, 2022 - 12:00 a.m.
OTFCC Buffer Overflow Vulnerability (CNVD-2023-11779)
2022-10-1800:00:00
China National Vulnerability Database
www.cnvd.org.cn
13
otfcc
buffer overflow
opentype font
EPSS
0.001
Percentile
39.6%
OTFCC is a C library and utility open sourced by Caryll. It is used to parse and write OpenType font files.OTFCC 0.10.4 and earlier versions contain a buffer overflow vulnerability that stems from /release-x64/otfccdump 0x6b5567 boundary error when processing untrusted input, which can be exploited by an attacker to cause a program crash.
Related
osv
osv
CVE-2022-35040
2022-10-14 12:15:09
nvd
nvd
CVE-2022-35040
2022-10-14 12:15:09
prion
prion
Heap overflow
2022-10-14 12:15:00
debiancve
debiancve
CVE-2022-35040
2022-10-14 12:15:09
cvelist
cvelist
CVE-2022-35040
2022-10-14 00:00:00
ubuntucve
ubuntucve
CVE-2022-35040
2022-10-14 00:00:00
cve
cve
CVE-2022-35040
2022-10-14 12:15:09