OTFCC is a C library and utility open sourced by Caryll. It is used to parse and write OpenType font files.OTFCC 0.10.4 and earlier versions have a buffer overflow vulnerability that originates in /release-x64/otfccdump 0x6c0473 with a boundary error when processing untrusted input, which can be exploited by an attacker to cause a program crash.