libming 関連製品全体の CVE とセキュリティ脆弱性情報を集約し、CVSS、EPSS、公開日、脆弱性情報データを掲載しています。
過去の問題は主に バッファオーバーフロー and vendor risk memory corruption などに関し、一部は vendor impact unexpected behavior を招き、vendor surface production workloads and vendor surface software deployment 関連の場面に影響します。
掲載データは公開脆弱性情報とセキュリティ公告に基づき、過去の暴露面と修補優先度の評価に利用できます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2025-66877 | Buffer overflow vulnerability in function dcputchar in decompile.c in libming 0.4.8. | [email protected] | 7.5 | 0.29% | 2025-12-29 | 2026-01-15 |
| CVE-2025-66869 | Buffer overflow vulnerability in function strcat in asan_interceptors.cpp in libming 0.4.8. | [email protected] | 7.5 | 0.29% | 2025-12-29 | 2026-01-15 |
| CVE-2025-29497 | libming v0.4.8 was discovered to contain a memory leak via the parseSWF_MORPHFILLSTYLES function. | [email protected] | 6.5 | 0.28% | 2025-03-27 | 2025-04-01 |
| CVE-2025-29496 | libming v0.4.8 was discovered to contain a segmentation fault via the decompileDUPLICATECLIP function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file. | [email protected] | 6.5 | 0.28% | 2025-03-27 | 2025-04-01 |
| CVE-2025-29494 | libming v0.4.8 was discovered to contain a segmentation fault via the decompileGETMEMBER function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file. | [email protected] | 6.5 | 0.28% | 2025-03-27 | 2025-04-01 |
| CVE-2025-29493 | libming v0.4.8 was discovered to contain a segmentation fault via the decompileGETPROPERTY function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file. | [email protected] | 6.5 | 0.28% | 2025-03-27 | 2025-04-01 |
| CVE-2025-29492 | libming v0.4.8 was discovered to contain a segmentation fault via the decompileSETVARIABLE function. | [email protected] | 6.5 | 0.28% | 2025-03-27 | 2025-04-01 |
| CVE-2025-29491 | An allocation-size-too-big error in the parseSWF_DEFINEBINARYDATA function of libming v0.48 allows attackers to cause a Denial of Service (DoS) via supplying a crafted SWF file. | [email protected] | 6.5 | 0.28% | 2025-03-27 | 2025-04-01 |
| CVE-2025-29490 | libming v0.4.8 was discovered to contain a segmentation fault via the decompileCALLMETHOD function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file. | [email protected] | 6.5 | 0.28% | 2025-03-27 | 2025-04-01 |
| CVE-2025-29489 | libming v0.4.8 was discovered to contain a memory leak via the parseSWF_MORPHLINESTYLES function. | [email protected] | 6.5 | 0.28% | 2025-03-27 | 2025-04-01 |
| CVE-2025-29488 | libming v0.4.8 was discovered to contain a memory leak via the parseSWF_INITACTION function. | [email protected] | 6.5 | 0.28% | 2025-03-27 | 2025-04-01 |
| CVE-2025-29487 | An out-of-memory error in the parseABC_STRING_INFO function of libming v0.4.8 allows attackers to cause a Denial of Service (DoS) due to allocator exhaustion. | [email protected] | 7.5 | 0.37% | 2025-03-27 | 2025-04-01 |
| CVE-2025-29486 | libming v0.4.8 was discovered to contain a memory leak via the parseSWF_PLACEOBJECT3 function. | [email protected] | 6.5 | 0.29% | 2025-03-27 | 2025-04-01 |
| CVE-2025-29485 | libming v0.4.8 was discovered to contain a segmentation fault via the decompileRETURN function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SWF file. | [email protected] | 6.5 | 0.29% | 2025-03-27 | 2025-04-01 |
| CVE-2025-29484 | An out-of-memory error in the parseABC_NS_SET_INFO function of libming v0.4.8 allows attackers to cause a Denial of Service (DoS) due to allocator exhaustion. | [email protected] | 7.5 | 0.36% | 2025-03-27 | 2025-04-01 |
| CVE-2025-29483 | libming v0.4.8 was discovered to contain a memory leak via the parseSWF_ENABLEDEBUGGER2 function. | [email protected] | 6.5 | 0.27% | 2025-03-27 | 2025-04-01 |
| CVE-2025-26311 | Multiple memory leaks have been identified in the clip actions parsing functions (parseSWF_CLIPACTIONS and parseSWF_CLIPACTIONRECORD) in util/parser.c of libming v0.4.8, which allow attackers to cause a denial of service via a crafted SWF file. | [email protected] | 6.5 | 0.43% | 2025-02-20 | 2025-04-17 |
| CVE-2025-26310 | Multiple memory leaks have been identified in the ABC file parsing functions (parseABC_CONSTANT_POOL and `parseABC_FILE) in util/parser.c of libming v0.4.8, which allow attackers to cause a denial of service via a crafted ABC file. | [email protected] | 6.5 | 0.43% | 2025-02-20 | 2025-04-17 |
| CVE-2025-26309 | A memory leak has been identified in the parseSWF_DEFINESCENEANDFRAMEDATA function in util/parser.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted SWF file. | [email protected] | 6.5 | 0.36% | 2025-02-20 | 2025-04-17 |
| CVE-2025-26308 | A memory leak has been identified in the parseSWF_FILTERLIST function in util/parser.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted SWF file. | [email protected] | 6.5 | 0.36% | 2025-02-20 | 2025-04-17 |