CVE 2017-11704

A heap-based buffer over-read was found in the function decompileIF in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.

See the CVE page on Mitre.org for more details.