RSS   Vulnerabilities for 'Libopenmpt'   RSS

2019-10-03
 
CVE-2019-17113

CWE-120
 

 
In libopenmpt before 0.3.19 and 0.4.x before 0.4.9, ModPlug_InstrumentName and ModPlug_SampleName in libopenmpt_modplug.c do not restrict the lengths of libmodplug output-buffer strings in the C API, leading to a buffer overflow.

 
2019-07-30
 
CVE-2019-14383

CWE-20
 

 
J2B in libopenmpt before 0.4.2 allows an assertion failure during file parsing with debug STLs.

 
 
CVE-2019-14382

CWE-20
 

 
DSM in libopenmpt before 0.4.2 allows an assertion failure during file parsing with debug STLs.

 
 
CVE-2019-14380

CWE-125
 

 
libopenmpt before 0.4.5 allows a crash during playback due to an out-of-bounds read in XM and MT2 files.

 
 
CVE-2018-20861

CWE-20
 

 
libopenmpt before 0.3.11 allows a crash with certain malformed custom tunings in MPTM files.

 
 
CVE-2018-20860

CWE-20
 

 
libopenmpt before 0.3.13 allows a crash with malformed MED files.

 
 
CVE-2019-14381

CWE-476
 

 
libopenmpt before 0.4.3 allows a crash due to a NULL pointer dereference when doing a portamento from an OPL instrument to an empty instrument note map slot.

 
2017-07-17
 
CVE-2017-11311

 

 
soundlib/Load_psm.cpp in OpenMPT through 1.26.12.00 and libopenmpt before 0.2.8461-beta26 has a heap buffer overflow with the potential for arbitrary code execution via a crafted PSM File that triggers use of the same sample slot for two samples.

 

 >>> Vendor: Openmpt 2 Products
Openmpt
Libopenmpt


Copyright 2024, cxsecurity.com

 

Back to Top