vulnerability
FreeBSD: VID-d37407bd-5c5f-11ea-bb2a-8c164582fbac (CVE-2017-11547): TiMidity++ -- Multiple vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:N/A:P) | Mar 2, 2020 | Dec 10, 2025 | Dec 10, 2025 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:N/A:P)
Published
Mar 2, 2020
Added
Dec 10, 2025
Modified
Dec 10, 2025
Description
qflb.wu of DBAPPSecurity reports: Ihe insert_note_steps function in readmidi.c in TiMidity++ 2.14.0 can cause a denial of service(divide-by-zero error and application crash) via a crafted mid file. The resample_gauss function in resample.c in TiMidity++ 2.14.0 can cause a denial of service(heap-buffer-overflow) via a crafted mid file. The play_midi function in playmidi.c in TiMidity++ 2.14.0 can cause a denial of service(large loop and CPU consumption) via a crafted mid file.
Solutions
freebsd-upgrade-package-timidity++freebsd-upgrade-package-timidity++-emacsfreebsd-upgrade-package-timidity++-gtkfreebsd-upgrade-package-timidity++-motiffreebsd-upgrade-package-timidity++-slangfreebsd-upgrade-package-timidity++-tcltkfreebsd-upgrade-package-timidity++-xawfreebsd-upgrade-package-timidity++-xskin
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.