CVE-2020-37011
Published: 29 January 2026
Summary
CVE-2020-37011 is a high-severity Out-of-bounds Write (CWE-787) vulnerability in Gnome Fonts Viewer (inferred from references). Its CVSS base score is 8.4 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Malicious File (T1204.002); ranked at the 32.7th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).
Deeper analysis
CVE-2020-37011 is a heap corruption vulnerability (CWE-787) affecting Gnome Fonts Viewer version 3.34.0. The flaw enables an out-of-bounds write through a specially crafted TTF font file, where an oversized pattern triggers an infinite malloc() loop. This can potentially crash the gnome-font-viewer process. The vulnerability carries a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H) and was published on 2026-01-29.
Remote attackers can exploit this vulnerability over the network with low attack complexity, requiring no privileges or user interaction. Exploitation involves tricking a user into opening the malicious TTF file in Gnome Fonts Viewer, resulting in a denial-of-service via process crash and high availability impact.
References include advisories from VulnCheck (vulncheck.com/advisories/gnome-fonts-viewer-heap-corruption) and proof-of-concept exploits on Exploit-DB (exploit-db.com/exploits/48803), along with GNOME Font Viewer (apps.gnome.org/FontViewer/) and help documentation (help.gnome.org/). These resources detail the issue but do not specify patches in the provided information.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2020-30906
Vulnerability details
Gnome Fonts Viewer 3.34.0 contains a heap corruption vulnerability that allows attackers to trigger an out-of-bounds write by crafting a malicious TTF font file. Attackers can generate a specially crafted TTF file with an oversized pattern to exhaust memory through…
more
repeated malloc() calls and potentially crash the gnome-font-viewer process.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Malicious TTF font file opened by user triggers heap corruption/DoS in font viewer process.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Requires validation of TTF font file inputs to reject malformed structures that trigger oversized patterns and heap corruption in gnome-font-viewer.
Mandates timely patching of the identified heap-corruption flaw in Gnome Fonts Viewer 3.34.0 to eliminate the out-of-bounds write condition.
Enforces memory protection mechanisms that can contain or block the out-of-bounds write and repeated malloc() behavior caused by the crafted TTF file.