VYPR

rpm package

opensuse/libopenmpt&distro=openSUSE Leap 15.0

pkg:rpm/opensuse/libopenmpt&distro=openSUSE%20Leap%2015.0

Vulnerabilities (5)

  • CVE-2019-17113Oct 3, 2019
    affected < 0.3.19-lp150.10.1fixed 0.3.19-lp150.10.1

    In libopenmpt before 0.3.19 and 0.4.x before 0.4.9, ModPlug_InstrumentName and ModPlug_SampleName in libopenmpt_modplug.c do not restrict the lengths of libmodplug output-buffer strings in the C API, leading to a buffer overflow.

  • CVE-2019-14382Jul 30, 2019
    affected < 0.3.17-lp150.7.1fixed 0.3.17-lp150.7.1

    DSM in libopenmpt before 0.4.2 allows an assertion failure during file parsing with debug STLs.

  • CVE-2019-14383Jul 30, 2019
    affected < 0.3.17-lp150.7.1fixed 0.3.17-lp150.7.1

    J2B in libopenmpt before 0.4.2 allows an assertion failure during file parsing with debug STLs.

  • CVE-2018-20860Jul 30, 2019
    affected < 0.3.17-lp150.7.1fixed 0.3.17-lp150.7.1

    libopenmpt before 0.3.13 allows a crash with malformed MED files.

  • CVE-2018-20861Jul 30, 2019
    affected < 0.3.17-lp150.7.1fixed 0.3.17-lp150.7.1

    libopenmpt before 0.3.11 allows a crash with certain malformed custom tunings in MPTM files.