BDU:2026-03010BDU:2026-03010HIGH7.5Уязвимость компонента src/synth/fluid_synth_monopoly.c программного синтезатора FluidSynth, позволяющая нарушителю вызвать отказ в обслуживанииPublished: 2026-03-13CVSS 3.xHIGH 7.5CVSS:3.x/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HCVSS 2.0HIGH 7.8CVSS:2.0/AV:N/AC:L/Au:N/C:N/I:N/A:CReferencesCVE-2025-56225
CVE-2025-56225CVE-2025-56225HIGH7.5fluidsynth-2.4.6 and earlier versions is vulnerable to Null pointer dereference in fluid_synth_monopoly.c, that can be triggered when loading an invalid midi file.Published: 2026-01-09Modified: 2026-01-23CVSS 3.xHIGH 7.5CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HReferenceshttps://github.com/FluidSynth/fluidsynth/issues/1602https://github.com/FluidSynth/fluidsynth/pull/1607https://github.com/FluidSynth/fluidsynth/issues/1602
