CVE-2022-35474 in OTFCCinfo

Summary

by MITRE • 08/17/2022

OTFCC v0.10.4 was discovered to contain a heap-buffer overflow via /release-x64/otfccdump+0x6b544e.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Analysis

by VulDB Data Team • 08/31/2025

The heap-buffer overflow vulnerability in OTFCC v0.10.4 represents a critical security flaw that can be exploited through the otffcdump utility at the memory address /release-x64/otfccdump+0x6b544e. This vulnerability arises from improper input validation and memory management within the font compilation and dumping functions. The issue specifically manifests when processing malformed or specially crafted font files that trigger buffer overflows in heap-allocated memory regions. The vulnerability stems from a classic memory safety issue where the application fails to properly bounds-check data before copying it into fixed-size buffers, creating opportunities for attackers to overwrite adjacent memory locations.

The technical implementation of this vulnerability involves the manipulation of font data structures during the dumping process, where the application attempts to read or write beyond the allocated buffer boundaries. This type of flaw falls under the CWE-121 heap-based buffer overflow category, which is classified as a memory safety vulnerability in the Common Weakness Enumeration catalog. The attack vector typically requires an adversary to provide malicious input files that cause the application to allocate insufficient memory for processing font data, leading to memory corruption that can be leveraged for arbitrary code execution or denial of service conditions. The specific memory address offset suggests this occurs during the execution of the dump utility's processing functions, indicating that the vulnerability is triggered by font file parsing operations rather than network-based attacks.

The operational impact of this vulnerability extends beyond simple memory corruption, as it can be exploited to achieve remote code execution or system compromise when the affected application processes untrusted font files. This is particularly concerning in environments where font processing is automated or where applications automatically process font files from untrusted sources. The vulnerability affects systems running OTFCC v0.10.4 and potentially other versions that share similar code paths, making it a widespread concern for organizations using font compilation tools in their workflows. The attack surface includes web applications, desktop software, and server environments that may process font files without proper sanitization, creating multiple potential entry points for exploitation.

Mitigation strategies for this vulnerability should include immediate patching of the OTFCC library to version v0.10.5 or later, which contains the necessary memory bounds checking fixes. Organizations should implement input validation measures that sanitize font file inputs before processing, employ memory safety techniques such as address sanitization, and consider deploying runtime protections like stack canaries or heap integrity checks. The vulnerability aligns with ATT&CK technique T1059.007 for execution through compiled programs and T1203 for exploitation of memory corruption vulnerabilities. System administrators should also implement monitoring for unusual font processing activities and consider network segmentation to limit potential attack vectors. Regular security assessments of font processing pipelines and updates to font handling libraries should be prioritized to prevent similar vulnerabilities from emerging in other components of the system infrastructure.

Reservation

07/11/2022

Disclosure

08/17/2022

Moderation

accepted

CPE

ready

Exploit

Download

EPSS

0.00684

KEV

no

Activities

very low

Sources

Do you want to use VulDB in your project?

Use the official API to access entries easily!