Vulnerabilities (CVE)

Filtered by vendor Openmpt Subscribe

Filtered by product Libopenmpt

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 4 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2018-6611	1 Openmpt	2 Libopenmpt, Openmpt	2020-10-15	6.8 MEDIUM	8.8 HIGH
soundlib/Load_stp.cpp in OpenMPT through 1.27.04.00, and libopenmpt before 0.3.6, has an out-of-bounds read via a malformed STP file.
CVE-2019-14381	1 Openmpt	1 Libopenmpt	2019-08-05	5.0 MEDIUM	7.5 HIGH
libopenmpt before 0.4.3 allows a crash due to a NULL pointer dereference when doing a portamento from an OPL instrument to an empty instrument note map slot.
CVE-2018-11710	1 Openmpt	1 Libopenmpt	2018-07-16	6.8 MEDIUM	8.8 HIGH
soundlib/pattern.h in libopenmpt before 0.3.9 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted AMS file because of an invalid write near address 0 in an out-of-memory situation.
CVE-2017-11311	1 Openmpt	2 Libopenmpt, Openmpt	2017-07-27	6.8 MEDIUM	7.8 HIGH
soundlib/Load_psm.cpp in OpenMPT through 1.26.12.00 and libopenmpt before 0.2.8461-beta26 has a heap buffer overflow with the potential for arbitrary code execution via a crafted PSM File that triggers use of the same sample slot for two samples.