Linuxsampler: >> Libgig Security Vulnerabilities
An issue was discovered in libgig through 20200507. A heap-buffer-overflow exists in the function RIFF::List::GetSubList located in RIFF.cpp. It allows an attacker to cause code Execution.
CVSS Score
8.8
EPSS Score
0.006
Published
2021-09-20
An issue was discovered in libgig 4.1.0. There is a NULL pointer dereference in the function DLS::File::GetFirstSample() in DLS.cpp.
CVSS Score
6.5
EPSS Score
0.003
Published
2018-10-09
An issue was discovered in libgig 4.1.0. There is operator new[] failure (due to a big pWavePoolTable heap request) in DLS::File::File in DLS.cpp.
CVSS Score
8.8
EPSS Score
0.004
Published
2018-10-09
An issue was discovered in libgig 4.1.0. There is a heap-based buffer over-read in DLS::Region::GetSample() in DLS.cpp.
CVSS Score
8.8
EPSS Score
0.004
Published
2018-10-09
An issue was discovered in libgig 4.1.0. There is an FPE (divide-by-zero error) in DLS::Sample::Sample in DLS.cpp.
CVSS Score
6.5
EPSS Score
0.003
Published
2018-10-09
An issue was discovered in libgig 4.1.0. There is a heap-based buffer over-read in RIFF::List::GetListTypeString in RIFF.cpp.
CVSS Score
8.8
EPSS Score
0.004
Published
2018-10-09
An issue was discovered in libgig 4.1.0. There is an operator new[] failure (due to a big pSampleLoops heap request) in DLS::Sampler::Sampler in DLS.cpp.
CVSS Score
9.8
EPSS Score
0.004
Published
2018-10-09
An issue was discovered in libgig 4.1.0. There is an out of bounds read in gig::File::UpdateChunks in gig.cpp.
CVSS Score
8.8
EPSS Score
0.004
Published
2018-07-20
An issue was discovered in libgig 4.1.0. There is an out-of-bounds read in the "update dimension region's chunks" feature of the function gig::Region::UpdateChunks in gig.cpp.
CVSS Score
8.8
EPSS Score
0.004
Published
2018-07-20
An issue was discovered in libgig 4.1.0. There is a heap-based buffer overflow in the function RIFF::Chunk::Read in RIFF.cpp.
CVSS Score
8.8
EPSS Score
0.004
Published
2018-07-20
Page 1