CVE-2017-11549

Description

The play_midi function in playmidi.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service (large loop and CPU consumption) via a crafted mid file. NOTE: CPU consumption might be relevant when using the --background option.

Affected packages (1)

• Debian/timidityfrom 0

CVSS scores

References (1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2017-11549