VYPR

Libgig

by Linuxsampler

CVEs (7)

  • CVE-2018-18196HigOct 9, 2018
    risk 0.57cvss 8.8epss 0.01

    An issue was discovered in libgig 4.1.0. There is a heap-based buffer over-read in RIFF::List::GetListTypeString in RIFF.cpp.

  • CVE-2018-18194HigOct 9, 2018
    risk 0.57cvss 8.8epss 0.01

    An issue was discovered in libgig 4.1.0. There is a heap-based buffer over-read in DLS::Region::GetSample() in DLS.cpp.

  • CVE-2018-14459HigJul 20, 2018
    risk 0.57cvss 8.8epss 0.01

    An issue was discovered in libgig 4.1.0. There is an out-of-bounds write in pData[0] access in the function store16 in helper.h.

  • CVE-2018-14457HigJul 20, 2018
    risk 0.57cvss 8.8epss 0.01

    An issue was discovered in libgig 4.1.0. There is an out-of-bounds write in the function DLS::Info::UpdateChunks in DLS.cpp.

  • CVE-2018-14453HigJul 20, 2018
    risk 0.57cvss 8.8epss 0.01

    An issue was discovered in libgig 4.1.0. There is a heap-based buffer overflow in pData[1] access in the function store16 in helper.h.

  • CVE-2018-14449HigJul 20, 2018
    risk 0.57cvss 8.8epss 0.01

    An issue was discovered in libgig 4.1.0. There is an out of bounds read in gig::File::UpdateChunks in gig.cpp.

  • CVE-2017-12950MedAug 28, 2017
    risk 0.46cvss 6.5epss 0.05

    The gig::Region::Region function in gig.cpp in libgig 4.0.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted gig file.