5 matches found
CVE-2021-33897
A buffer overflow in Synthesia before 10.7.5567, when a non-Latin locale is used, allows user-assisted attackers to cause a denial of service application crash via a crafted MIDI file with malformed bytes. This file is mishandled during a deletion attempt. In Synthesia before 10.9, an improper pa...
MGASA-2018-0061 Updated wildmidi packages fix security vulnerabilities
The WMSetupMidiEvent function in internalmidi.c:2318 in WildMIDI before 0.4.2 can cause a denial of serviceinvalid memory read and application crash via a crafted mid file CVE-2017-11661. The WMParseNewMidi function in fmidi.c in WildMIDI before 0.4.2 can cause a denial of serviceinvalid memory...
UBUNTU-CVE-2017-11662
The WMParseNewMidi function in fmidi.c in WildMIDI 0.4.2 can cause a denial of service invalid memory read and application crash via a crafted mid file...
UBUNTU-CVE-2017-11549
The playmidi function in playmidi.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service large loop and CPU consumption via a crafted mid file. NOTE: CPU consumption might be relevant when using the --background option...
TiMidity++ -- Multiple vulnerabilities
qflb.wu of DBAPPSecurity reports: Ihe insertnotesteps function in readmidi.c in TiMidity++ 2.14.0 can cause a denial of servicedivide-by-zero error and application crash via a crafted mid file. The resamplegauss function in resample.c in TiMidity++ 2.14.0 can cause a denial of...