Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The resample_gauss function in resample.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted mid file. NOTE: a crash might be relevant when using the --background option. NOTE: the TiMidity++ README.alsaseq documentation suggests a setuid-root installation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
TiMidity++ 安全漏洞
Vulnerability Description
TiMidity++是一个开源的音频文件转换器和播放器,能够将MIDI文件转换成其它格式的音频文件。 TiMidity++ 2.14.0版本中的resample.c文件的‘resample_gauss’函数存在安全漏洞。远程攻击者可借助特制的mid文件利用该漏洞造成拒绝服务(基于堆的缓冲区越边界读取)。
CVSS Information
N/A
Vulnerability Type
N/A