The WildMidi_Open function in WildMIDI since commit d8a466829c67cacbb1700beded25c448d99514e5 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted file.
Max CVSS
7.8
EPSS Score
0.08%
Published
2018-01-02
Updated
2018-01-18
The _WM_SetupMidiEvent function in internal_midi.c:2122 in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file.
Max CVSS
6.5
EPSS Score
0.08%
Published
2017-08-17
Updated
2020-11-10
The _WM_SetupMidiEvent function in internal_midi.c:2315 in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file.
Max CVSS
6.5
EPSS Score
0.06%
Published
2017-08-17
Updated
2017-08-21
The _WM_ParseNewMidi function in f_midi.c in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file.
Max CVSS
7.5
EPSS Score
0.08%
Published
2017-08-17
Updated
2017-08-21
The _WM_SetupMidiEvent function in internal_midi.c:2318 in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file.
Max CVSS
7.5
EPSS Score
0.08%
Published
2017-08-17
Updated
2017-08-21
5 vulnerabilities found