CVE-2022-46440

Medium

5.5/10

Summary

ttftool v0.9.2 was discovered to contain a segmentation violation via the readU16 function at ttf.c.

Attack Complexity: LOW
Attack Vector: LOCAL
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: REQUIRED
Privileges Required: NONE
Confidentiality Impact: NONE
Availability Impact: HIGH

References

Advisory Timeline

Published Feb 24, 2023