First published: Thu Sep 22 2022(Updated: )
OTFCC commit 617837b was discovered to contain a segmentation violation via /release-x64/otfccdump+0x6babea.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Otfcc Project Otfcc |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-35029 is a vulnerability found in OTFCC commit 617837b that allows for a segmentation violation through the /release-x64/otfccdump+0x6babea function.
CVE-2022-35029 has a severity level of medium with a score of 6.5.
Exploiting CVE-2022-35029 requires executing a specific function (/release-x64/otfccdump+0x6babea) in the vulnerable OTFCC commit 617837b.
To fix CVE-2022-35029, update to a version of OTFCC that does not contain the vulnerable commit 617837b.
You can find more information about CVE-2022-35029 in the provided references: [here](https://drive.google.com/file/d/1x0eGL9tYqc7BEapsTqD78FTu9H8GKZ6l/view?usp=sharing) and [here](https://github.com/Cvjark/Poc/blob/main/otfcc/CVE-2022-35029.md).