CVE-2025-26310 in libminginfo

Summary

by MITRE • 02/20/2025

Multiple memory leaks have been identified in the ABC file parsing functions (parseABC_CONSTANT_POOL and `parseABC_FILE) in util/parser.c of libming v0.4.8, which allow attackers to cause a denial of service via a crafted ABC file.

Be aware that VulDB is the high quality source for vulnerability data.

Analysis

by VulDB Data Team • 09/12/2025

The vulnerability identified as CVE-2025-26310 represents a critical memory management flaw within the libming library version 0.4.8, specifically affecting the ABC file parsing functionality. This issue resides in the util/parser.c source file and manifests through two primary parsing functions: parseABC_CONSTANT_POOL and parseABC_FILE. The affected library is commonly used for processing multimedia content and is integral to various applications that handle Flash-based file formats, making this vulnerability particularly concerning for systems that process untrusted multimedia content.

The technical root cause of this vulnerability stems from insufficient memory deallocation practices within the ABC file parsing routines. When processing malformed or crafted ABC files, the parseABC_CONSTANT_POOL and parseABC_FILE functions fail to properly release allocated memory blocks, resulting in progressive memory consumption that can ultimately lead to system resource exhaustion. This memory leak behavior occurs because the parsing functions allocate memory for various data structures including constant pools and file metadata without implementing proper cleanup mechanisms when encountering unexpected file formats or malformed input data. The vulnerability is classified as a memory leak under CWE-401, which specifically addresses improper management of memory resources leading to resource exhaustion.

The operational impact of CVE-2025-26310 extends beyond simple resource consumption, as it enables attackers to execute denial of service attacks against systems that utilize the libming library. By crafting malicious ABC files designed to trigger the memory leak conditions, adversaries can systematically consume available system memory, leading to application crashes, system instability, or complete service unavailability. This vulnerability particularly affects applications that process user-uploaded multimedia content, web servers handling Flash-based media, and content management systems that parse multimedia files without proper input validation. The attack vector requires minimal sophistication as it only requires the delivery of a specially crafted ABC file, making it an attractive target for automated exploitation campaigns.

Mitigation strategies for this vulnerability should focus on immediate library updates and input validation measures. Organizations should prioritize upgrading to the latest version of libming where this memory leak has been addressed through proper memory management practices and comprehensive resource cleanup routines. Additionally, implementing robust input validation and sanitization measures can help prevent exploitation by rejecting malformed ABC files before they reach the vulnerable parsing functions. Security controls should include monitoring for unusual memory consumption patterns and implementing resource limits on applications that process multimedia content. The vulnerability aligns with ATT&CK technique T1499.004 which covers network denial of service attacks through resource exhaustion, and organizations should consider implementing defensive measures such as application whitelisting and network segmentation to limit the potential impact of exploitation attempts.

Responsible

MITRE

Reservation

02/07/2025

Disclosure

02/20/2025

Moderation

accepted

CPE

ready

EPSS

0.00361

KEV

no

Activities

very low

Sources

Want to know what is going to be exploited?

We predict KEV entries!