Openmpt vulnerabilities
3 known vulnerabilities affecting openmpt/openmpt.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2018-10017MEDIUMCVSS 6.5fixed in 1.27.07.002018-04-11
CVE-2018-10017 [MEDIUM] CWE-125 CVE-2018-10017: soundlib/Snd_fx.cpp in OpenMPT before 1.27.07.00 and libopenmpt before 0.3.8 allows remote attackers
soundlib/Snd_fx.cpp in OpenMPT before 1.27.07.00 and libopenmpt before 0.3.8 allows remote attackers to cause a denial of service (out-of-bounds read) via an IT or MO3 file with many nested pattern loops.
nvd
CVE-2018-6611HIGHCVSS 8.8≤ 1.27.04.002018-02-04
CVE-2018-6611 [HIGH] CWE-125 CVE-2018-6611: soundlib/Load_stp.cpp in OpenMPT through 1.27.04.00, and libopenmpt before 0.3.6, has an out-of-boun
soundlib/Load_stp.cpp in OpenMPT through 1.27.04.00, and libopenmpt before 0.3.6, has an out-of-bounds read via a malformed STP file.
nvd
CVE-2017-11311HIGHCVSS 7.8≤ 1.26.12.002017-07-17
CVE-2017-11311 [HIGH] CWE-119 CVE-2017-11311: soundlib/Load_psm.cpp in OpenMPT through 1.26.12.00 and libopenmpt before 0.2.8461-beta26 has a heap
soundlib/Load_psm.cpp in OpenMPT through 1.26.12.00 and libopenmpt before 0.2.8461-beta26 has a heap buffer overflow with the potential for arbitrary code execution via a crafted PSM File that triggers use of the same sample slot for two samples.
nvd