Vulnerability Details CVE-2017-11311
soundlib/Load_psm.cpp in OpenMPT through 1.26.12.00 and libopenmpt before 0.2.8461-beta26 has a heap buffer overflow with the potential for arbitrary code execution via a crafted PSM File that triggers use of the same sample slot for two samples.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 78.2%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 6.8
References
- https://bugs.debian.org/867579
- https://lib.openmpt.org/libopenmpt/md_announce-2017-07-07.html
- https://source.openmpt.org/browse/openmpt/branches/OpenMPT-1.26/?op=revision&rev=8438
- https://source.openmpt.org/browse/openmpt/trunk/?rev=6800
- https://bugs.debian.org/867579
- https://lib.openmpt.org/libopenmpt/md_announce-2017-07-07.html
- https://source.openmpt.org/browse/openmpt/branches/OpenMPT-1.26/?op=revision&rev=8438
- https://source.openmpt.org/browse/openmpt/trunk/?rev=6800
Products affected by CVE-2017-11311
-
cpe:2.3:a:openmpt:libopenmpt:0.2.8414
-
cpe:2.3:a:openmpt:openmpt:1.16.0213a
-
cpe:2.3:a:openmpt:openmpt:1.16.0214a
-
cpe:2.3:a:openmpt:openmpt:1.16.0215a
-
cpe:2.3:a:openmpt:openmpt:1.17
-
cpe:2.3:a:openmpt:openmpt:1.17.02.41
-
cpe:2.3:a:openmpt:openmpt:1.17.02.42
-
cpe:2.3:a:openmpt:openmpt:1.17.02.43
-
cpe:2.3:a:openmpt:openmpt:1.17.02.44
-
cpe:2.3:a:openmpt:openmpt:1.17.02.45
-
cpe:2.3:a:openmpt:openmpt:1.17.02.46
-
cpe:2.3:a:openmpt:openmpt:1.17.02.47
-
cpe:2.3:a:openmpt:openmpt:1.17.02.48
-
cpe:2.3:a:openmpt:openmpt:1.17.02.49
-
cpe:2.3:a:openmpt:openmpt:1.17.02.50
-
cpe:2.3:a:openmpt:openmpt:1.17.02.51
-
cpe:2.3:a:openmpt:openmpt:1.17.02.52
-
cpe:2.3:a:openmpt:openmpt:1.17.02.53
-
cpe:2.3:a:openmpt:openmpt:1.17.02.54
-
cpe:2.3:a:openmpt:openmpt:1.17.03.02
-
cpe:2.3:a:openmpt:openmpt:1.18.00.00
-
cpe:2.3:a:openmpt:openmpt:1.18.02.00
-
cpe:2.3:a:openmpt:openmpt:1.18.03.00
-
cpe:2.3:a:openmpt:openmpt:1.19.01.00
-
cpe:2.3:a:openmpt:openmpt:1.19.02.00
-
cpe:2.3:a:openmpt:openmpt:1.19.03.00
-
cpe:2.3:a:openmpt:openmpt:1.19.04.00
-
cpe:2.3:a:openmpt:openmpt:1.20.01.00
-
cpe:2.3:a:openmpt:openmpt:1.20.02.00
-
cpe:2.3:a:openmpt:openmpt:1.20.03.00
-
cpe:2.3:a:openmpt:openmpt:1.20.04.00
-
cpe:2.3:a:openmpt:openmpt:1.21.01.00
-
cpe:2.3:a:openmpt:openmpt:1.22.01.00
-
cpe:2.3:a:openmpt:openmpt:1.22.02.00
-
cpe:2.3:a:openmpt:openmpt:1.22.03.00
-
cpe:2.3:a:openmpt:openmpt:1.22.04.00
-
cpe:2.3:a:openmpt:openmpt:1.22.05.00
-
cpe:2.3:a:openmpt:openmpt:1.22.06.00
-
cpe:2.3:a:openmpt:openmpt:1.22.07.00
-
cpe:2.3:a:openmpt:openmpt:1.23.01.00
-
cpe:2.3:a:openmpt:openmpt:1.23.02.00
-
cpe:2.3:a:openmpt:openmpt:1.23.03.00
-
cpe:2.3:a:openmpt:openmpt:1.23.04.00
-
cpe:2.3:a:openmpt:openmpt:1.23.05.00
-
cpe:2.3:a:openmpt:openmpt:1.24.01.00
-
cpe:2.3:a:openmpt:openmpt:1.24.02.00
-
cpe:2.3:a:openmpt:openmpt:1.24.03.00
-
cpe:2.3:a:openmpt:openmpt:1.24.04.00
-
cpe:2.3:a:openmpt:openmpt:1.25.01.00
-
cpe:2.3:a:openmpt:openmpt:1.25.02.00
-
cpe:2.3:a:openmpt:openmpt:1.25.03.00
-
cpe:2.3:a:openmpt:openmpt:1.25.04.00
-
cpe:2.3:a:openmpt:openmpt:1.26.01.00
-
cpe:2.3:a:openmpt:openmpt:1.26.02.00
-
cpe:2.3:a:openmpt:openmpt:1.26.03.00
-
cpe:2.3:a:openmpt:openmpt:1.26.04.00
-
cpe:2.3:a:openmpt:openmpt:1.26.05.00
-
cpe:2.3:a:openmpt:openmpt:1.26.06.00
-
cpe:2.3:a:openmpt:openmpt:1.26.07.00
-
cpe:2.3:a:openmpt:openmpt:1.26.08.00
-
cpe:2.3:a:openmpt:openmpt:1.26.09.00
-
cpe:2.3:a:openmpt:openmpt:1.26.10.00
-
cpe:2.3:a:openmpt:openmpt:1.26.11.00
-
cpe:2.3:a:openmpt:openmpt:1.26.12.00