The outputSWF_TEXT_RECORD function in util/outputscript.c in libming <= 0.4.8 is vulnerable to a NULL pointer dereference, which may allow attackers to cause a denial of service via a crafted swf file. References: https://nvd.nist.gov/vuln/detail/CVE-2017-16883 https://github.com/libming/libming/issues/77 https://github.com/libming/libming/pull/94
Created ming tracking bugs for this issue: Affects: fedora-all [bug 1520747]