Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.891343
Category:Debian Local Security Checks
Title:Debian LTS: Security Advisory for ming (DLA-1343-1)
Summary:Multiple vulnerabilities have been discovered in Ming:;;CVE-2018-6358;;Heap-based buffer overflow vulnerability in the printDefineFont2 function;(util/listfdb.c). Remote attackers might leverage this vulnerability to;cause a denial of service via a crafted swf file.;;CVE-2018-7867;;Heap-based buffer overflow vulnerability in the getString function;(util/decompile.c) during a RegisterNumber sprintf. Remote attackers might;leverage this vulnerability to cause a denial of service via a crafted swf;file.;;CVE-2018-7868;;Heap-based buffer over-read vulnerability in the getName function;(util/decompile.c) for CONSTANT8 data. Remote attackers might leverage this;vulnerability to cause a denial of service via a crafted swf file.;;CVE-2018-7870;;Invalid memory address dereference in the getString function;(util/decompile.c) for CONSTANT16 data. Remote attackers might leverage this;vulnerability to cause a denial of service via a crafted swf file.;;CVE-2018-7871;;Heap-based buffer over-read vulnerability in the getName function;(util/decompile.c) for CONSTANT16 data. Remote attackers might leverage this;vulnerability to cause a denial of service via a crafted swf file.;;CVE-2018-7872;;Invalid memory address dereference in the getName function;(util/decompile.c) for CONSTANT16 data. Remote attackers might leverage this;vulnerability to cause a denial of service via a crafted swf file.;;CVE-2018-7875;;Heap-based buffer over-read vulnerability in the getName function;(util/decompile.c) for CONSTANT8 data. Remote attackers might leverage this;vulnerability to cause a denial of service via a crafted swf file.;;CVE-2018-9165;;The pushdup function (util/decompile.c) performs shallow copy of String;elements (instead of deep copy), allowing simultaneous change of multiple;elements of the stack, which indirectly makes the library vulnerable to a;NULL pointer dereference in getName (util/decompile.c). Remote attackers;might leverage this vulnerability to cause dos via a crafted swf file.
Description:Summary:
Multiple vulnerabilities have been discovered in Ming:

CVE-2018-6358

Heap-based buffer overflow vulnerability in the printDefineFont2 function
(util/listfdb.c). Remote attackers might leverage this vulnerability to
cause a denial of service via a crafted swf file.

CVE-2018-7867

Heap-based buffer overflow vulnerability in the getString function
(util/decompile.c) during a RegisterNumber sprintf. Remote attackers might
leverage this vulnerability to cause a denial of service via a crafted swf
file.

CVE-2018-7868

Heap-based buffer over-read vulnerability in the getName function
(util/decompile.c) for CONSTANT8 data. Remote attackers might leverage this
vulnerability to cause a denial of service via a crafted swf file.

CVE-2018-7870

Invalid memory address dereference in the getString function
(util/decompile.c) for CONSTANT16 data. Remote attackers might leverage this
vulnerability to cause a denial of service via a crafted swf file.

CVE-2018-7871

Heap-based buffer over-read vulnerability in the getName function
(util/decompile.c) for CONSTANT16 data. Remote attackers might leverage this
vulnerability to cause a denial of service via a crafted swf file.

CVE-2018-7872

Invalid memory address dereference in the getName function
(util/decompile.c) for CONSTANT16 data. Remote attackers might leverage this
vulnerability to cause a denial of service via a crafted swf file.

CVE-2018-7875

Heap-based buffer over-read vulnerability in the getName function
(util/decompile.c) for CONSTANT8 data. Remote attackers might leverage this
vulnerability to cause a denial of service via a crafted swf file.

CVE-2018-9165

The pushdup function (util/decompile.c) performs shallow copy of String
elements (instead of deep copy), allowing simultaneous change of multiple
elements of the stack, which indirectly makes the library vulnerable to a
NULL pointer dereference in getName (util/decompile.c). Remote attackers
might leverage this vulnerability to cause dos via a crafted swf file.

Affected Software/OS:
ming on Debian Linux

Solution:
For Debian 7 'Wheezy', these problems have been fixed in version
0.4.4-1.1+deb7u8.

We recommend that you upgrade your ming packages.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2018-6358
https://security.gentoo.org/glsa/201904-24
https://lists.debian.org/debian-lts-announce/2018/04/msg00008.html
Common Vulnerability Exposure (CVE) ID: CVE-2018-7867
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892260
https://github.com/libming/libming/issues/116
Common Vulnerability Exposure (CVE) ID: CVE-2018-7868
https://github.com/libming/libming/issues/113
Common Vulnerability Exposure (CVE) ID: CVE-2018-7870
https://github.com/libming/libming/issues/117
Common Vulnerability Exposure (CVE) ID: CVE-2018-7871
https://github.com/libming/libming/issues/120
Common Vulnerability Exposure (CVE) ID: CVE-2018-7872
https://github.com/libming/libming/issues/114
Common Vulnerability Exposure (CVE) ID: CVE-2018-7875
https://github.com/libming/libming/issues/112
Common Vulnerability Exposure (CVE) ID: CVE-2018-9165
CopyrightCopyright (C) 2018 Greenbone Networks GmbH http://greenbone.net

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2022 E-Soft Inc. All rights reserved.