Vulnerabilities > Openmpt
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-10-04 | CVE-2019-17113 | Classic Buffer Overflow vulnerability in Openmpt Libopenmpt In libopenmpt before 0.3.19 and 0.4.x before 0.4.9, ModPlug_InstrumentName and ModPlug_SampleName in libopenmpt_modplug.c do not restrict the lengths of libmodplug output-buffer strings in the C API, leading to a buffer overflow. | 7.5 |
| 2019-07-30 | CVE-2019-14383 | Reachable Assertion vulnerability in multiple products J2B in libopenmpt before 0.4.2 allows an assertion failure during file parsing with debug STLs. | 6.5 |
| 2019-07-30 | CVE-2019-14382 | Reachable Assertion vulnerability in Openmpt Libopenmpt DSM in libopenmpt before 0.4.2 allows an assertion failure during file parsing with debug STLs. | 6.5 |
| 2019-07-30 | CVE-2019-14380 | Out-of-bounds Read vulnerability in multiple products libopenmpt before 0.4.5 allows a crash during playback due to an out-of-bounds read in XM and MT2 files. | 6.5 |
| 2019-07-30 | CVE-2018-20861 | Improper Input Validation vulnerability in Openmpt Libopenmpt libopenmpt before 0.3.11 allows a crash with certain malformed custom tunings in MPTM files. | 4.3 |
| 2019-07-30 | CVE-2018-20860 | Improper Input Validation vulnerability in multiple products libopenmpt before 0.3.13 allows a crash with malformed MED files. | 6.5 |
| 2019-07-30 | CVE-2019-14381 | NULL Pointer Dereference vulnerability in Openmpt Libopenmpt libopenmpt before 0.4.3 allows a crash due to a NULL pointer dereference when doing a portamento from an OPL instrument to an empty instrument note map slot. | 5.0 |
| 2018-06-04 | CVE-2018-11710 | Out-of-bounds Write vulnerability in Openmpt Libopenmpt soundlib/pattern.h in libopenmpt before 0.3.9 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted AMS file because of an invalid write near address 0 in an out-of-memory situation. | 6.8 |
| 2018-04-11 | CVE-2018-10017 | Out-of-bounds Read vulnerability in Openmpt Libopenmpt and Openmpt soundlib/Snd_fx.cpp in OpenMPT before 1.27.07.00 and libopenmpt before 0.3.8 allows remote attackers to cause a denial of service (out-of-bounds read) via an IT or MO3 file with many nested pattern loops. | 4.3 |
| 2018-02-04 | CVE-2018-6611 | Out-of-bounds Read vulnerability in Openmpt Libopenmpt and Openmpt soundlib/Load_stp.cpp in OpenMPT through 1.27.04.00, and libopenmpt before 0.3.6, has an out-of-bounds read via a malformed STP file. | 6.8 |