>> Avast Integer Overflow Verifying NumFonts In TTC Header

USER: deepcore // DATE: 2015-12-15 21:17 // MODIFIED: 2015-12-15

If the numFonts field in the TTC header is greater than (SIZE_MAX+1) / 4, an integer overflow occurs in filevirus_ttf() when calling CSafeGenFile::SafeLockBuffer.