5 matches found
Updated TiMidity++ packages fix security vulnerabilities
The insertnotesteps function in readmidi.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted mid file. NOTE: a crash might be relevant when using the --background option CVE-2017-11546. The resamplegauss function in...
openSUSE Security Update : timidity (openSUSE-2018-208)
This update for timidity fixes the following issues : Security issues fixed : - CVE-2017-11546: Fix division-by-zero with malformed MIDI file boo1081694 - CVE-2017-11547: Fix out-of-bound accesses in the resamplers boo1081694 Other issues fixed : - Drop tcl/tk dependency; it's already broken with...
CVE-2017-11546
The insertnotesteps function in readmidi.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted mid file. NOTE: a crash might be relevant when using the --background option...
CVE-2017-11546
The insertnotesteps function in readmidi.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted mid file. NOTE: a crash might be relevant when using the --background option...
CVE-2017-11546
CVE-2017-11546 affects TiMidity++ 2.14.0. The vulnerability is in the insert_note_steps function (readmidi.c) and Allows a crafted MIDI file to trigger a divide-by-zero and crash the application (potentially relevant when running with --background). Connected advisories confirm a security patch; ...