{"id":"MGASA-2019-0137","summary":"Updated ming packages fix security vulnerability","details":"The printDefineFont2 function (util/listfdb.c) in libming through 0.4.8 is\nvulnerable to a heap-based buffer overflow, which may allow attackers to\ncause a denial of service or unspecified other impact via a crafted FDB\nfile. (CVE-2018-6358)\n\nThere is a heap-based buffer overflow in the getString function of\nutil/decompile.c in libming 0.4.8 during a RegisterNumber sprintf. A\nCrafted input will lead to a denial of service attack. (CVE-2018-7867)\n\nThere is a heap-based buffer over-read in the getName function of\nutil/decompile.c in libming 0.4.8 for CONSTANT8 data. A Crafted input will\nlead to a denial of service attack. (CVE-2018-7868)\n\nAn invalid memory address dereference was discovered in getString in\nutil/decompile.c in libming 0.4.8 for CONSTANT16 data. The vulnerability\ncauses a segmentation fault and application crash, which leads to denial\nof service. (CVE-2018-7870)\n\nThere is a heap-based buffer over-read in the getName function of\nutil/decompile.c in libming 0.4.8 for CONSTANT16 data. A crafted input\nwill lead to a denial of service or possibly unspecified other impact.\n(CVE-2018-7871)\n\nAn invalid memory address dereference was discovered in the function\ngetName in libming 0.4.8 for CONSTANT16 data. The vulnerability causes a\nsegmentation fault and application crash, which leads to denial of\nservice. (CVE-2018-7872)\n\nThere is a heap-based buffer over-read in the getString function of\nutil/decompile.c in libming 0.4.8 for CONSTANT8 data. A Crafted input\nwill lead to a denial of service attack. (CVE-2018-7875)\n\nThe pushdup function in util/decompile.c in libming through 0.4.8 does\nnot recognize the need for ActionPushDuplicate to perform a deep copy\nwhen a String is at the top of the stack, making the library vulnerable\nto a util/decompile.c getName NULL pointer dereference, which may allow\nattackers to cause a denial of service via a crafted SWF file.\n(CVE-2018-9165)\n","modified":"2026-04-16T04:43:45.708501058Z","published":"2019-04-10T21:25:19Z","upstream":["CVE-2018-6358","CVE-2018-7867","CVE-2018-7868","CVE-2018-7870","CVE-2018-7871","CVE-2018-7872","CVE-2018-7875","CVE-2018-9165"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2019-0137.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=24505"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/DCVKRTMEAJTXCYXNA53WZFPDF67TN7NC/"}],"affected":[{"package":{"name":"ming","ecosystem":"Mageia:6","purl":"pkg:rpm/mageia/ming?arch=source&distro=mageia-6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.4.9-0.git20181112.1.mga6"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2019-0137.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}