Openmpt: >> Openmpt >> 1.17.02.54 Security Vulnerabilities
soundlib/Snd_fx.cpp in OpenMPT before 1.27.07.00 and libopenmpt before 0.3.8 allows remote attackers to cause a denial of service (out-of-bounds read) via an IT or MO3 file with many nested pattern loops.
CVSS Score
6.5
EPSS Score
0.008
Published
2018-04-11
soundlib/Load_stp.cpp in OpenMPT through 1.27.04.00, and libopenmpt before 0.3.6, has an out-of-bounds read via a malformed STP file.
CVSS Score
8.8
EPSS Score
0.004
Published
2018-02-04
soundlib/Load_psm.cpp in OpenMPT through 1.26.12.00 and libopenmpt before 0.2.8461-beta26 has a heap buffer overflow with the potential for arbitrary code execution via a crafted PSM File that triggers use of the same sample slot for two samples.
CVSS Score
7.8
EPSS Score
0.012
Published
2017-07-17