VYPR

Openmpt

by Openmpt

Source repositories

CVEs (4)

  • CVE-2017-11311HigJul 17, 2017
    risk 0.51cvss 7.8epss 0.02

    soundlib/Load_psm.cpp in OpenMPT through 1.26.12.00 and libopenmpt before 0.2.8461-beta26 has a heap buffer overflow with the potential for arbitrary code execution via a crafted PSM File that triggers use of the same sample slot for two samples.

  • CVE-2006-4192Aug 17, 2006
    risk 0.04cvss epss 0.08

    Multiple buffer overflows in MODPlug Tracker (OpenMPT) 1.17.02.43 and earlier and libmodplug 0.8 and earlier, as used in GStreamer and possibly other products, allow user-assisted remote attackers to execute arbitrary code via (1) long strings in ITP files used by the…

  • CVE-2018-10017MedApr 11, 2018
    risk 0.00cvss 6.5epss 0.02

    soundlib/Snd_fx.cpp in OpenMPT before 1.27.07.00 and libopenmpt before 0.3.8 allows remote attackers to cause a denial of service (out-of-bounds read) via an IT or MO3 file with many nested pattern loops.

  • CVE-2018-6611HigFeb 4, 2018
    risk 0.00cvss 8.8epss 0.01

    soundlib/Load_stp.cpp in OpenMPT through 1.27.04.00, and libopenmpt before 0.3.6, has an out-of-bounds read via a malformed STP file.