There is a heap-based buffer overflow in the getString function of util/decompile.c in libming 0.4.8 for DOUBLE data. A Crafted input will lead to a denial of service attack.
{ "binaries": [ { "binary_name": "libming-dev", "binary_version": "1:0.4.5-1.2ubuntu7" }, { "binary_name": "libming-util", "binary_version": "1:0.4.5-1.2ubuntu7" }, { "binary_name": "libming1", "binary_version": "1:0.4.5-1.2ubuntu7" }, { "binary_name": "libswf-perl", "binary_version": "1:0.4.5-1.2ubuntu7" }, { "binary_name": "ming-fonts-dejavu", "binary_version": "1:0.4.5-1.2ubuntu7" }, { "binary_name": "ming-fonts-opensymbol", "binary_version": "1:0.4.5-1.2ubuntu7" }, { "binary_name": "python-ming", "binary_version": "1:0.4.5-1.2ubuntu7" } ] }