Vulnerabilities > Openmpt > Libopenmpt > 0.4.4

DATE CVE VULNERABILITY TITLE RISK
2019-10-04 CVE-2019-17113 Classic Buffer Overflow vulnerability in Openmpt Libopenmpt
In libopenmpt before 0.3.19 and 0.4.x before 0.4.9, ModPlug_InstrumentName and ModPlug_SampleName in libopenmpt_modplug.c do not restrict the lengths of libmodplug output-buffer strings in the C API, leading to a buffer overflow.
network
low complexity
openmpt CWE-120
critical
 9.8
9.8
2019-07-30 CVE-2019-14380 Out-of-bounds Read vulnerability in multiple products
libopenmpt before 0.4.5 allows a crash during playback due to an out-of-bounds read in XM and MT2 files.
network
low complexity
openmpt debian CWE-125
6.5
6.5