14 matches found
SUSE CVE-2018-11710
soundlib/pattern.h in libopenmpt before 0.3.9 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted AMS file because of an invalid write near address 0 in an out-of-memory situation...
libopenmpt Denial of Service Vulnerability
libopenmpt is a cross-platform audio playback library based on C and C++. A security vulnerability exists in the soundlib/pattern.h file in versions of libopenmpt prior to 0.3.9. A remote attacker can exploit this vulnerability to cause a denial of service application crash with the help of a...
CVE-2018-11710
soundlib/pattern.h in libopenmpt before 0.3.9 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted AMS file because of an invalid write near address 0 in an out-of-memory situation...
Memory corruption
soundlib/pattern.h in libopenmpt before 0.3.9 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted AMS file because of an invalid write near address 0 in an out-of-memory situation...
CVE-2018-11710
soundlib/pattern.h in libopenmpt before 0.3.9 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted AMS file because of an invalid write near address 0 in an out-of-memory situation...
CVE-2018-11710
soundlib/pattern.h in libopenmpt before 0.3.9 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted AMS file because of an invalid write near address 0 in an out-of-memory situation...
CVE-2018-11710
CVE-2018-11710 affects libopenmpt up to version 0.3.8, where AMS file handling could trigger an out-of-memory write near address 0, potentially causing a crash or unspecified impact. The issue is addressed by upgrading to libopenmpt 0.3.9, as documented in multiple advisories (e.g., SUSE/OpenSUSE...
CVE-2018-10017
soundlib/Sndfx.cpp in OpenMPT before 1.27.07.00 and libopenmpt before 0.3.8 allows remote attackers to cause a denial of service out-of-bounds read via an IT or MO3 file with many nested pattern loops...
CVE-2018-6611
CVE-2018-6611 affects OpenMPT (soundlib/Load_stp.cpp) through 1.27.04.00 and libopenmpt before 0.3.6, with an out-of-bounds read triggered by a malformed STP file. Connected docs confirm the vulnerable components and versions, and indicate a fix in libopenmpt 0.3.6 (security update). Impact is a ...
CVE-2018-6611
soundlib/Loadstp.cpp in OpenMPT through 1.27.04.00, and libopenmpt before 0.3.6, has an out-of-bounds read via a malformed STP file...
CVE-2017-11311
soundlib/Loadpsm.cpp in OpenMPT through 1.26.12.00 and libopenmpt before 0.2.8461-beta26 has a heap buffer overflow with the potential for arbitrary code execution via a crafted PSM File that triggers use of the same sample slot for two samples...
CVE-2017-11311
soundlib/Loadpsm.cpp in OpenMPT through 1.26.12.00 and libopenmpt before 0.2.8461-beta26 has a heap buffer overflow with the potential for arbitrary code execution via a crafted PSM File that triggers use of the same sample slot for two samples...
CVE-2017-11311
soundlib/Loadpsm.cpp in OpenMPT through 1.26.12.00 and libopenmpt before 0.2.8461-beta26 has a heap buffer overflow with the potential for arbitrary code execution via a crafted PSM File that triggers use of the same sample slot for two samples...
CVE-2006-4192
Multiple buffer overflows in MODPlug Tracker OpenMPT 1.17.02.43 and earlier and libmodplug 0.8 and earlier, as used in GStreamer and possibly other products, allow user-assisted remote attackers to execute arbitrary code via 1 long strings in ITP files used by the CSoundFile::ReadITProject functi...