Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Mageia: 2020-0032 Denial Of Service Due To Ming Null Pointer Issue

mageia
Calendar Grey January 11, 2020
Dist Mageia Esm H88
Recent updates to ming packages in Mageia resolve critical security vulnerabilities that could lead to denial of service, incorporating essential patches for libming.
The updated packages fix security vulnerabilities: A NULL pointer dereference was discovered in newVar3 in util/decompile.c in libming 0.4.8

Summary

The updated packages fix security vulnerabilities:
A NULL pointer dereference was discovered in newVar3 in util/decompile.c in libming 0.4.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service. (CVE-2018-7866)
There is a heap-based buffer overflow in the getString function of util/decompile.c in libming 0.4.8 for INTEGER data. A Crafted input will lead to a denial of service attack. (CVE-2018-7873)
In libming 0.4.8, a memory exhaustion vulnerability was found in the function parseSWF_ACTIONRECORD in util/parser.c, which allows remote attackers to cause a denial of service via a crafted file. (CVE-2018-7876)
In libming 0.4.8, there is a use-after-free in the decompileJUMP function of the decompile.c file. (CVE-2018-9009)
libming 0.4.8 has a NULL pointer dereference in the getInt function of the decompile.c file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted swf file. (CVE-2018-9132)

References

- https://bugs.mageia.org/show_bug.cgi?id=25957

- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/LBFCINUX3XXAPPH77OH6NKACBPFBQXXW/

- https://www.cve.org/CVERecord?id=CVE-2018-7866

- https://www.cve.org/CVERecord?id=CVE-2018-7873

- https://www.cve.org/CVERecord?id=CVE-2018-7876

- https://www.cve.org/CVERecord?id=CVE-2018-9009

- https://www.cve.org/CVERecord?id=CVE-2018-9132

Topics%20covered

Topics Covered

security advisory denial of service buffer overflow NULL pointer memory exhaustion use-after-free mageia

Resolution

SRPMS

- 7/core/ming-0.4.9-0.git20181112.2.1.mga7

Severity
important
Lowest
Low
Medium
High
Critical

Publication date: 11 Jan 2020
URL: https://advisories.mageia.org/MGASA-2020-0032.html
Type: security
CVE: CVE-2018-7866, CVE-2018-7873, CVE-2018-7876, CVE-2018-9009, CVE-2018-9132

Topics%20covered

Topics Covered

security advisory denial of service buffer overflow NULL pointer memory exhaustion use-after-free mageia

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here