CVE-2018-5251

Name of the Vulnerable Software and Affected Versions libming version 0.4.8

Description The issue is caused by an integer signedness error vulnerability, specifically a left shift of a negative value, in the readSBits function located in util/read.c. This can be exploited by remote attackers to cause a denial of service by using a crafted swf file.

Recommendations For libming version 0.4.8, consider applying a patch to fix the integer signedness error in the readSBits function to prevent denial of service attacks via crafted swf files. At the moment, there is no information about a newer version that contains a fix for this vulnerability.