Fluidsynth: >> Fluidsynth >> 2.0.9 Security Vulnerabilities
fluidsynth-2.4.6 and earlier versions is vulnerable to Null pointer dereference in fluid_synth_monopoly.c, that can be triggered when loading an invalid midi file.
CVSS Score
7.5
EPSS Score
0.0
Published
2026-01-09
fluidsynth is a software synthesizer based on the SoundFont 2 specifications. A use after free violation was discovered in fluidsynth, that can be triggered when loading an invalid SoundFont file.
CVSS Score
7.2
EPSS Score
0.005
Published
2021-04-29