Gnome Fonts Viewer Heap Corruption Vulnerability Allowing Out-of-Bounds Write

A heap corruption vulnerability has been identified in Gnome Fonts Viewer version 3.34.0. This vulnerability allows attackers to trigger an out-of-bounds write by crafting a malicious TrueType font (TTF) file. The exploitation involves creating a TTF file with an oversized pattern, which can cause an infinite loop in memory allocation, potentially leading to a crash of the Gnome Fonts Viewer process.

Impact

Exploitation of this vulnerability causes a heap corruption, leading to an out-of-bounds write. This can disrupt the normal operation of the application and potentially be exploited to execute arbitrary code.

Reproduction

The vulnerability can be reproduced by creating a TTF file that includes an oversized pattern designed to exploit the application's font processing. Once the file is created, it can be opened with Gnome Fonts Viewer, which will process the malicious font and trigger the vulnerability. This exploitation causes an infinite loop of memory allocation, which can crash the application after several attempts.