CVE-2017-11311 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Libopenmpt

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer4 documents4 sources

Severity

7.8HIGHNVD

EPSS

1.2%

top 21.05%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Openmpt Libopenmpt Debian Libopenmpt Openmpt

Timeline

PublishedJul 17

Latest updateMay 17

Description

soundlib/Load_psm.cpp in OpenMPT through 1.26.12.00 and libopenmpt before 0.2.8461-beta26 has a heap buffer overflow with the potential for arbitrary code execution via a crafted PSM File that triggers use of the same sample slot for two samples.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages4 packages

▶debiandebian/libopenmpt< libopenmpt 0.2.8461~beta26-1 (bookworm)

▶Debianopenmpt/libopenmpt< 0.2.8461~beta26-1+3

▶NVDopenmpt/libopenmpt0.2.8414

▶NVDopenmpt/openmpt1.26.12.00

Patches

Patch: bugs.debian.org ↗Patch: lib.openmpt.org ↗Patch: source.openmpt.org ↗

🔴Vulnerability Details

GHSA

GHSA-9pfv-fqcf-vp62: soundlib/Load_psm↗2022-05-17

▶

OSV

CVE-2017-11311: soundlib/Load_psm↗2017-07-17

▶

📋Vendor Advisories

Debian

CVE-2017-11311: libopenmpt - soundlib/Load_psm.cpp in OpenMPT through 1.26.12.00 and libopenmpt before 0.2.84...↗2017

▶