CVE-2017-9988

The readEncUInt30 function in util/read.c in libming 0.4.8 mishandles memory allocation. A crafted input will lead to a remote denial of service (NULL pointer dereference) attack against parser.c.

Date published : 2017-06-28

https://security.gentoo.org/glsa/201904-24

https://github.com/libming/libming/issues/85