Vulnerabilities > Libming > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-12-24 | CVE-2018-20428 | NULL Pointer Dereference vulnerability in Libming 0.4.8 libming 0.4.8 has a NULL pointer dereference in the strlenext function of the decompile.c file, a different vulnerability than CVE-2018-7874. | 6.8 |
| 2018-12-24 | CVE-2018-20427 | NULL Pointer Dereference vulnerability in Libming 0.4.8 libming 0.4.8 has a NULL pointer dereference in the getInt function of the decompile.c file, a different vulnerability than CVE-2018-9132. | 6.8 |
| 2018-12-24 | CVE-2018-20426 | NULL Pointer Dereference vulnerability in Libming 0.4.8 libming 0.4.8 has a NULL pointer dereference in the newVar3 function of the decompile.c file, a different vulnerability than CVE-2018-7866. | 6.8 |
| 2018-12-24 | CVE-2018-20425 | NULL Pointer Dereference vulnerability in Libming 0.4.8 libming 0.4.8 has a NULL pointer dereference in the pushdup function of the decompile.c file. | 6.8 |
| 2018-08-25 | CVE-2018-15871 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libming An invalid memory address dereference was discovered in decompileSingleArgBuiltInFunctionCall in libming 0.4.8 before 2018-03-12. | 4.3 |
| 2018-08-25 | CVE-2018-15870 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libming An invalid memory address dereference was discovered in decompileGETVARIABLE in libming 0.4.8 before 2018-03-12. | 4.3 |
| 2018-07-05 | CVE-2018-13251 | Resource Exhaustion vulnerability in Libming 0.4.8 In libming 0.4.8, there is an excessive memory allocation attempt in the readBytes function of the util/read.c file, related to parseSWF_DEFINEBITSJPEG2. | 4.3 |
| 2018-07-05 | CVE-2018-13250 | NULL Pointer Dereference vulnerability in Libming 0.4.8 libming 0.4.8 has a NULL pointer dereference in the getString function of the decompile.c file, related to decompileSTRINGCONCAT. | 4.3 |
| 2018-07-02 | CVE-2018-13066 | Missing Release of Resource after Effective Lifetime vulnerability in Libming 0.4.8 There is a memory leak in util/parser.c in libming 0.4.8, which will lead to a denial of service via parseSWF_DEFINEBUTTON2, parseSWF_DEFINEFONT, parseSWF_DEFINEFONTINFO, parseSWF_DEFINELOSSLESS, parseSWF_DEFINESPRITE, parseSWF_DEFINETEXT, parseSWF_DOACTION, parseSWF_FILLSTYLEARRAY, parseSWF_FRAMELABEL, parseSWF_LINESTYLEARRAY, parseSWF_PLACEOBJECT2, or parseSWF_SHAPEWITHSTYLE. | 5.0 |
| 2018-05-17 | CVE-2018-11226 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libming The getString function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater than the actual size, which allows remote attackers to cause a denial of service (Segmentation fault and application crash) or possibly have unspecified other impact. | 6.8 |