Vulnerabilities > Timidity Project

DATE CVE VULNERABILITY TITLE RISK
2017-07-31 CVE-2017-11549 Excessive Iteration vulnerability in Timidity++ Project Timidity++ 2.14.0
The play_midi function in playmidi.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service (large loop and CPU consumption) via a crafted mid file.
local
low complexity
timidity-project CWE-834
5.5
2017-07-31 CVE-2017-11547 Out-of-bounds Read vulnerability in Timidity++ Project Timidity++ 2.14.0
The resample_gauss function in resample.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted mid file.
local
low complexity
timidity-project CWE-125
5.5
2017-07-31 CVE-2017-11546 Divide By Zero vulnerability in Timidity++ Project Timidity++ 2.14.0
The insert_note_steps function in readmidi.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted mid file.
local
low complexity
timidity-project CWE-369
5.5