Bug 1479314 - (CVE-2017-11661, CVE-2017-11662, CVE-2017-11663, CVE-2017-11664) CVE-2017-11661 CVE-2017-11662 CVE-2017-11663 CVE-2017-11664 wildmidi: Multiple vulnerabilities
CVE-2017-11661 CVE-2017-11662 CVE-2017-11663 CVE-2017-11664 wildmidi: Multipl...
Status: NEW
Product: Security Response
Classification: Other
Component: vulnerability (Show other bugs)
unspecified
All Linux
medium Severity medium
: ---
: ---
Assigned To: Red Hat Product Security
impact=moderate,public=20170808,repor...
: Security
Depends On: 1479316 1479315
Blocks:
  Show dependency treegraph
 
Reported: 2017-08-08 07:01 EDT by Andrej Nemec
Modified: 2017-08-08 07:01 EDT (History)
2 users (show)

See Also:
Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed:
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)

  None (edit)
Description Andrej Nemec 2017-08-08 07:01:39 EDT
CVE-2017-11661

the _WM_SetupMidiEvent function in internal_midi.c:2318 in WildMIDI 0.4.2 can cause a denial of service(invalid memory read and application crash) via a crafted mid file.

CVE-2017-11662

the _WM_ParseNewMidi function in f_midi.c in WildMIDI 0.4.2 can cause a denial of service(invalid memory read and application crash) via a crafted mid file.

CVE-2017-11663

the _WM_SetupMidiEvent function in internal_midi.c:2315 in WildMIDI 0.4.2 can cause a denial of service(invalid memory read and application crash) via a crafted mid file.

CVE-2017-11664

the _WM_SetupMidiEvent function in internal_midi.c:2122 in WildMIDI 0.4.2 can cause a denial of service(invalid memory read and application crash) via a crafted mid file.

Upstream patch:

https://github.com/Mindwerks/wildmidi/commit/660b513d99bced8783a4a5984ac2f742c74ebbdd

References:

http://seclists.org/fulldisclosure/2017/Aug/12
Comment 1 Andrej Nemec 2017-08-08 07:01:58 EDT
Created wildmidi tracking bugs for this issue:

Affects: epel-7 [bug 1479316]
Affects: fedora-all [bug 1479315]

Note You need to log in before you can comment on or make changes to this bug.