Libopenmpt

libopenmpt

Vendor: Openmpt • 11 CVEs

CVEs (11)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2019-17113 1Openmpt 1Libopenmpt Nov 21, 2024 Oct 4, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 In libopenmpt before 0.3.19 and 0.4.x before 0.4.9, ModPlug_InstrumentName and ModPlug_SampleName in libopenmpt_modplug.c do not restrict the lengths of libmodplug output-buffer strings in the C API, leading to a buffer...Show more In libopenmpt before 0.3.19 and 0.4.x before 0.4.9, ModPlug_InstrumentName and ModPlug_SampleName in libopenmpt_modplug.c do not restrict the lengths of libmodplug output-buffer strings in the C API, leading to a buffer overflow.Show less
CVE-2019-14383 2Openmpt Opensuse 2Leap Libopenmpt Nov 21, 2024 Jul 30, 2019 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 J2B in libopenmpt before 0.4.2 allows an assertion failure during file parsing with debug STLs.
CVE-2019-14382 1Openmpt 1Libopenmpt Nov 21, 2024 Jul 30, 2019 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 DSM in libopenmpt before 0.4.2 allows an assertion failure during file parsing with debug STLs.
CVE-2019-14380 2Debian Openmpt 2Debian Linux Libopenmpt Nov 21, 2024 Jul 30, 2019 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 libopenmpt before 0.4.5 allows a crash during playback due to an out-of-bounds read in XM and MT2 files.
CVE-2018-20861 1Openmpt 1Libopenmpt Nov 21, 2024 Jul 30, 2019 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 libopenmpt before 0.3.11 allows a crash with certain malformed custom tunings in MPTM files.
CVE-2018-20860 2Openmpt Opensuse 2Leap Libopenmpt Nov 21, 2024 Jul 30, 2019 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 libopenmpt before 0.3.13 allows a crash with malformed MED files.
CVE-2019-14381 1Openmpt 1Libopenmpt Nov 21, 2024 Jul 30, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 libopenmpt before 0.4.3 allows a crash due to a NULL pointer dereference when doing a portamento from an OPL instrument to an empty instrument note map slot.
CVE-2018-11710 1Openmpt 1Libopenmpt Nov 21, 2024 Jun 4, 2018 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 soundlib/pattern.h in libopenmpt before 0.3.9 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted AMS file because of an invalid write near add...Show more soundlib/pattern.h in libopenmpt before 0.3.9 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted AMS file because of an invalid write near address 0 in an out-of-memory situation.Show less
CVE-2018-10017 1Openmpt 2Libopenmpt Openmpt Nov 21, 2024 Apr 11, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 soundlib/Snd_fx.cpp in OpenMPT before 1.27.07.00 and libopenmpt before 0.3.8 allows remote attackers to cause a denial of service (out-of-bounds read) via an IT or MO3 file with many nested pattern loops.
CVE-2018-6611 1Openmpt 2Libopenmpt Openmpt Nov 21, 2024 Feb 4, 2018 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 soundlib/Load_stp.cpp in OpenMPT through 1.27.04.00, and libopenmpt before 0.3.6, has an out-of-bounds read via a malformed STP file.
CVE-2017-11311 1Openmpt 2Libopenmpt Openmpt May 13, 2026 Jul 17, 2017 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 soundlib/Load_psm.cpp in OpenMPT through 1.26.12.00 and libopenmpt before 0.2.8461-beta26 has a heap buffer overflow with the potential for arbitrary code execution via a crafted PSM File that triggers use of the same sa...Show more soundlib/Load_psm.cpp in OpenMPT through 1.26.12.00 and libopenmpt before 0.2.8461-beta26 has a heap buffer overflow with the potential for arbitrary code execution via a crafted PSM File that triggers use of the same sample slot for two samples.Show less