Mindwerks Wildmidi : Security vulnerabilities, CVEs

CVE-2017-1000418

The WildMidi_Open function in WildMIDI since commit d8a466829c67cacbb1700beded25c448d99514e5 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted file.

Max CVSS

7.8

EPSS Score

0.08%

Published

2018-01-02

Updated

2018-01-18

CVE-2017-11664

The _WM_SetupMidiEvent function in internal_midi.c:2122 in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file.

Max CVSS

6.5

EPSS Score

0.08%

Published

2017-08-17

Updated

2020-11-10

CVE-2017-11663

The _WM_SetupMidiEvent function in internal_midi.c:2315 in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file.

Max CVSS

6.5

EPSS Score

0.06%

Published

2017-08-17

Updated

2017-08-21

CVE-2017-11662

The _WM_ParseNewMidi function in f_midi.c in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file.

Max CVSS

7.5

EPSS Score

0.08%

Published

2017-08-17

Updated

2017-08-21

CVE-2017-11661

The _WM_SetupMidiEvent function in internal_midi.c:2318 in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file.

Max CVSS

7.5

EPSS Score

0.08%

Published

2017-08-17

Updated

2017-08-21

Mindwerks » Wildmidi : Security Vulnerabilities, CVEs,

CVE-2017-1000418

CVE-2017-11664

CVE-2017-11663

CVE-2017-11662

CVE-2017-11661