cbcvebase.
CVE-2018-18193
published 2018-10-09

CVE-2018-18193: An issue was discovered in libgig 4.1.0. There is operator new[] failure (due to a big pWavePoolTable heap request) in DLS::File::File in DLS.cpp.

high8.8CVSS 3.0
AVNACLPRNUIRSUCHIHAH
An issue was discovered in libgig 4.1.0. There is operator new[] failure (due to a big pWavePoolTable heap request) in DLS::File::File in DLS.cpp.

Affected

3 ranges
VendorProductVersion rangeFixed in
debianlibgig
linuxlinux_kernel>= 0 < 4.4.0-127.1534.4.0-127.153
linuxsamplerlibgig

CVSS provenance

nvdv3.08.8HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv8.8HIGH