The readEncUInt30 function in util/read.c in libming 0.4.8 mishandles memory allocation. A crafted input will lead to a remote denial of service (NULL pointer dereference) attack against parser.c.
{ "binaries": [ { "binary_version": "1:0.4.5-1.2ubuntu7", "binary_name": "libming-dev" }, { "binary_version": "1:0.4.5-1.2ubuntu7", "binary_name": "libming-util" }, { "binary_version": "1:0.4.5-1.2ubuntu7", "binary_name": "libming1" }, { "binary_version": "1:0.4.5-1.2ubuntu7", "binary_name": "libswf-perl" }, { "binary_version": "1:0.4.5-1.2ubuntu7", "binary_name": "ming-fonts-dejavu" }, { "binary_version": "1:0.4.5-1.2ubuntu7", "binary_name": "ming-fonts-opensymbol" }, { "binary_version": "1:0.4.5-1.2ubuntu7", "binary_name": "python-ming" } ] }