Openmpt

openmpt

Vendor: Openmpt • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2018-10017 1Openmpt 2Libopenmpt Openmpt Nov 21, 2024 Apr 11, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 soundlib/Snd_fx.cpp in OpenMPT before 1.27.07.00 and libopenmpt before 0.3.8 allows remote attackers to cause a denial of service (out-of-bounds read) via an IT or MO3 file with many nested pattern loops.
CVE-2018-6611 1Openmpt 2Libopenmpt Openmpt Nov 21, 2024 Feb 4, 2018 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 soundlib/Load_stp.cpp in OpenMPT through 1.27.04.00, and libopenmpt before 0.3.6, has an out-of-bounds read via a malformed STP file.
CVE-2017-11311 1Openmpt 2Libopenmpt Openmpt May 13, 2026 Jul 17, 2017 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 soundlib/Load_psm.cpp in OpenMPT through 1.26.12.00 and libopenmpt before 0.2.8461-beta26 has a heap buffer overflow with the potential for arbitrary code execution via a crafted PSM File that triggers use of the same sa...Show more soundlib/Load_psm.cpp in OpenMPT through 1.26.12.00 and libopenmpt before 0.2.8461-beta26 has a heap buffer overflow with the potential for arbitrary code execution via a crafted PSM File that triggers use of the same sample slot for two samples.Show less