17 matches found
CVE-2021-34342
CVE-2021-34342 relates to Ming 0.4.8, where an out-of-bounds read in the function newVar_N() within decompile.c is described as causing a huge information leak. The connected sources (NVD/Nessus entries and multiple regional catalogs) consistently report this exact vulnerability signature without...
CVE-2021-34341
Ming 0.4.8 is affected by CVE-2021-34341 due to an out-of-bounds read in the decompileIF() function of decompile.c, causing a direct segmentation fault and denial of service. This is the concrete vulnerability described across connected records, including NVD/NIST entries and CNVD/OSV variants. T...
CVE-2021-34340
CVE-2021-34340 affects Ming 0.4.8. The vulnerability is an out-of-bounds buffer access in decompiler.c (function decompileINCR_DECR()) that can trigger a direct segmentation fault, leading to denial of service. The connected sources (Red Hat, Ubuntu, CNVD, OSV, CNVD-2022, etc.) consistently descr...
CVE-2017-11730
CVE-2017-11730 is a vulnerability in Ming 0.4.8 where a heap-based buffer over-read occurs in OpCode (called from decompileINCR_DECR) within util/decompile.c, allowing a denial of service via a crafted SWF/file. Affected component: Ming library for generating Macromedia Flash files. The connected...
CVE-2017-11734
CVE-2017-11734 affects Ming/libming 0.4.8. The vulnerability is a heap-based buffer over-read in decompileCALLFUNCTION in util/decompile.c, enabling a denial of service via a crafted SWF/file. Connected sources confirm the affected library version and function, and describe the impact as DoS with...
CVE-2017-11731
CVE-2017-11731 affects Ming 0.4.8 (libming) and is an invalid memory read in OpCode (used by isLogicalOp and decompileIF in util/decompile.c) that enables denial of service via a crafted file. Connected sources enumerate multiple Ming-related CVEs in 0.4.8 and document memory/buffer over-read and...
CVE-2017-11728
CVE-2017-11728 is a heap-based buffer over-read in Ming 0.4.8 (function OpCode, called from decompileSETMEMBER in util/decompile.c). The vulnerability allows a denial of service via a crafted SWF/file. Public advisories indicate Ming 0.4.8 is affected and that fixes are delivered in later Ming pa...
CVE-2017-11733
CVE-2017-11733 : Ming 0.4.8 is affected by a null pointer dereference in the function stackswap (called from decompileSTACKSWAP) in util/decompile.c, leading to denial of service when processing a crafted file. Public advisories reference Ming/Fedora/Gentoo/OpenVAS entries; no explicit exploit de...
CVE-2021-34339
Ming 0.4.8 contains an out-of-bounds buffer access in getString() within decompiler.c that triggers a direct segmentation fault, leading to a denial of service. This is the concrete technical detail documented across multiple sources in the connected documents, confirming the vulnerable component...
CVE-2017-11729
CVE-2017-11729 is a vulnerability in Ming 0.4.8 where a heap-based buffer over-read occurs in the OpCode path (util/decompile.c), triggered when processing crafted SWF files via decompileINCR_DECR. This can lead to a denial of service. Several connected advisories (GLSA-201904-24, Fedora advisori...
CVE-2017-11732
CVE-2017-11732 is a heap-based buffer overflow in Ming 0.4.8 (util/decompile.c: function dcputs called via decompileIMPLEMENTS) that allows denial of service via a crafted SWF file. Connected sources (GLSA 201904-24, Fedora/OpenVAS/NASL entries) confirm the vulnerability in Ming 0.4.8 along with ...
CVE-2017-11703
Ming 0.4.8 contains a memory leak in parseSWF_DOACTION (util/parser.c) that can be triggered by a specially crafted SWF file, leading to a denial of service. The issue is documented across multiple sources (e.g., NVD/NX CVE-2017-11703, CNVD/OSVOS variants) with the same root cause, and no explici...
CVE-2021-34338
Ming 0.4.8 contains an out-of-bounds buffer overwrite in getName() of decompiler.c, causing a direct segmentation fault and denial of service. This vulnerability is stated across multiple sources (CVE-2021-34338) with no publicly provided exploit details in the connected documents. Affected softw...
CVE-2017-11704
CVE-2017-11704 is a heap-based buffer over-read in Ming 0.4.8 (util/decompile.c: decompileIF) that allows denial of service via a crafted SWF/file. Connected docs corroborate the issue in libming 0.4.8 and show Fedora/Mageia/Nessus/OpenVAS advisories listing this CVE among fixes for Ming 0.4.8; n...
CVE-2017-11705
The CVE-2017-11705 issue affects Ming 0.4.8: a memory leak in the function parseSWF_SHAPEWITHSTYLE located in util/parser.c can allow a crafted SWF file to cause a denial of service. The connected sources consistently describe this vulnerability as a memory leak in Ming 0.4.8 without detailing ex...
CVE-2019-9113
CVE-2019-9113 affects Ming (libming) 0.4.8. The vulnerability is a NULL pointer dereference in the function getString() in decompile.c inside libutil.a. The available documents identify the affected component and the exact code location but do not provide exploitable details, impact scope, or rem...
CVE-2019-9114
CVE-2019-9114 affects Ming (libming) 0.4.8. The vulnerability is an out-of-bounds write in strcpyext() within decompile.c in libutil.a. The NVD entry cites an impact on confidentiality, integrity, and availability (CVSS v2 base score 6.8; CVSS v3 base score 8.8) with network access required and n...