Unrated severityNVD Advisory· Published Apr 27, 2009· Updated Apr 23, 2026

CVE-2009-1438

Description

Integer overflow in the CSoundFile::ReadMed function (src/load_med.cpp) in libmodplug before 0.8.6, as used in gstreamer-plugins, TTPlayer, and other products, allows context-dependent attackers to execute arbitrary code via a MED file with a crafted (1) song comment or (2) song name, which triggers a heap-based buffer overflow, as exploited in the wild in August 2008.

Affected products

Konstanty Bialkowski/Libmodplug3 versions
cpe:2.3:a:konstanty_bialkowski:libmodplug:*:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:konstanty_bialkowski:libmodplug:*:*:*:*:*:*:*:*range: <=0.8.5
- cpe:2.3:a:konstanty_bialkowski:libmodplug:0.8:*:*:*:*:*:*:*
- cpe:2.3:a:konstanty_bialkowski:libmodplug:0.8.4:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

osvdb.org/53801nvdPatch
sourceforge.net/project/shownotes.phpnvdPatch
www.vupen.com/english/advisories/2009/1104nvdPatchVendor Advisory
www.securityfocus.com/bid/30801nvdExploitPatch
secunia.com/advisories/34797nvdVendor Advisory
bugs.gentoo.org/show_bug.cginvd
lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.htmlnvd
modplug-xmms.cvs.sourceforge.net/viewvc/modplug-xmms/libmodplug/src/load_med.cppnvd
secunia.com/advisories/34930nvd
secunia.com/advisories/35026nvd
secunia.com/advisories/35685nvd
secunia.com/advisories/35736nvd
secunia.com/advisories/36158nvd
secunia.com/advisories/36183nvd
security.gentoo.org/glsa/glsa-200907-07.xmlnvd
www.debian.org/security/2009/dsa-1850nvd
www.debian.org/security/2009/dsa-1851nvd
www.mandriva.com/security/advisoriesnvd
www.openwall.com/lists/oss-security/2009/04/21/4nvd
www.redhat.com/archives/fedora-package-announce/2009-April/msg00907.htmlnvd
www.redhat.com/archives/fedora-package-announce/2009-April/msg00908.htmlnvd
www.ubuntu.com/usn/USN-771-1nvd
bugzilla.redhat.com/show_bug.cginvd
exchange.xforce.ibmcloud.com/vulnerabilities/50388nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000