CVE-2016-9957

CWE-119 — Buffer Overflow8 documents6 sources

Severity

7.8HIGH

EPSS

0.3%

top 47.51%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Game-music-emu Project Game-music-emu Opensuse Leap Opensuse Opensuse +6 more

Timeline

PublishedApr 12

Latest updateMay 14

Description

Stack-based buffer overflow in game-music-emu before 0.6.1.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages9 packages

▶Debiangame-music-emu< 0.6.0-4+3

▶NVDgame-music-emu_project/game-music-emu0.6.0

▶NVDopensuse/leap42.2

▶NVDopensuse/opensuse12.1

▶NVDopensuse_project/leap42.1

Also affects: Linux Enterprise 12.0

Patches

Patch: bitbucket.org ↗Patch: bitbucket.org ↗

🔴Vulnerability Details

GHSA

GHSA-x8w4-hgv4-rjx8: Stack-based buffer overflow in game-music-emu before 0↗2022-05-14

▶

OSV

CVE-2016-9957: Stack-based buffer overflow in game-music-emu before 0↗2017-04-12

▶

CVEList

CVE-2016-9957: Stack-based buffer overflow in game-music-emu before 0↗2017-04-12

▶

📋Vendor Advisories

Debian

CVE-2016-9957: game-music-emu - Stack-based buffer overflow in game-music-emu before 0.6.1.↗2016

▶

💬Community

Bugzilla

CVE-2016-9957 CVE-2016-9958 CVE-2016-9959 CVE-2016-9960 CVE-2016-9961 game-music-emu: Multiple issues due to incorrect emulation of the SPC700 audio co-processor of SNES↗2016-12-16

▶

Bugzilla

CVE-2016-9957 CVE-2016-9958 CVE-2016-9959 CVE-2016-9960 CVE-2016-9961 game-music-emu: Multiple issues due to incorrect emulation of the SPC700 audio co-processor of SNES [epel-all]↗2016-12-16

▶

Bugzilla

CVE-2016-9957 CVE-2016-9958 CVE-2016-9959 CVE-2016-9960 CVE-2016-9961 game-music-emu: Multiple issues due to incorrect emulation of the SPC700 audio co-processor of SNES [fedora-all]↗2016-12-16

▶