OTFCC is a C library and utility open sourced by Caryll. It is used to parse and write OpenType font files. OTFCC suffers from a buffer overflow vulnerability that originates in /release-x64/otfccdump 0x4adcdb when handling untrusted input, which can be exploited by an attacker to cause a program crash.