VYPR

rpm package

suse/libmodplug&distro=SUSE Linux Enterprise Desktop 12 SP3

pkg:rpm/suse/libmodplug&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3

Vulnerabilities (2)

  • CVE-2013-4234Sep 16, 2013
    affected < 0.8.9.0+git20170610.f6dd59a-15.4.1fixed 0.8.9.0+git20170610.f6dd59a-15.4.1

    Multiple heap-based buffer overflows in the (1) abc_MIDI_drum and (2) abc_MIDI_gchord functions in load_abc.cpp in libmodplug 0.8.8.4 and earlier allow remote attackers to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via a crafted AB

  • CVE-2013-4233Sep 16, 2013
    affected < 0.8.9.0+git20170610.f6dd59a-15.4.1fixed 0.8.9.0+git20170610.f6dd59a-15.4.1

    Integer overflow in the abc_set_parts function in load_abc.cpp in libmodplug 0.8.8.4 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted P header in an ABC file, which triggers a heap-based buffer overflow.