The readString function in util/read.c and util/old/read.c in libming 0.4.8 allows attackers to cause a denial of service via a large file that is mishandled by listswf, listaction, etc. This occurs because of an integer overflow that leads to a memory allocation error. References: http://seclists.org/fulldisclosure/2017/May/106
Created ming tracking bugs for this issue: Affects: fedora-all [bug 1457345]