4 matches found
CVE-2017-12951
The CVE-2017-12951 issue affects libgig 4.0.0, where gig.cpp’s gig::DimensionRegion::CreateVelocityTable can be triggered by a crafted .gig file to cause a stack-based buffer over-read and crash the application, leading to a denial of service. This vulnerability is documented across multiple sour...
CVE-2017-12952
CVE-2017-12952 affects libgig 4.0.0, where the LoadString function in helper.h is vulnerable. A crafted .gig file can trigger a NULL pointer dereference, leading to a denial-of-service (application crash) from remote input. Public references confirm the same description across multiple sources; n...
CVE-2017-12954
The CVE-2017-12954 entry affects libgig 4.0.0: the function gig::Region::GetSampleFromWavePool in gig.cpp can be triggered by a crafted .gig file to cause a denial of service via an invalid memory read, leading to application crash and remote code impact. The description indicates a remote attack...
CVE-2017-12953
CVE-2017-12953 affects libgig 4.0.0, specifically the gig::Instrument::UpdateRegionKeyTable function in gig.cpp. A crafted .gig file can trigger a denial of service via an invalid memory write, leading to application crash. Multiple sources (NVD, OSV, Debian security tracker, CNVD) consistently d...