libgig is a C library for loading, modifying existing and creating new Gigasampler (.gig) files and DLS (downloadable sound) level 1/2 files, instruments based on KORG samples (.KSF and .KMP files), SoundFont v2 (.sf2) files, and AKAI sampler data. libgig A heap buffer overflow vulnerability exists in the RIFF::List::GetSubList function in RIFF.cpp in versions 20200507 and earlier. An attacker could exploit this vulnerability to execute code.