soundlib/Load_psm.cpp in OpenMPT through 1.26.12.00 and libopenmpt before 0.2.8461-beta26 has a heap buffer overflow with the potential for arbitrary code execution via a crafted PSM File that triggers use of the same sample slot for two samples.
References
Link | Resource |
---|---|
https://source.openmpt.org/browse/openmpt/trunk/?rev=6800 | Issue Tracking Patch Third Party Advisory |
https://source.openmpt.org/browse/openmpt/branches/OpenMPT-1.26/?op=revision&rev=8438 | Issue Tracking Patch Third Party Advisory |
https://lib.openmpt.org/libopenmpt/md_announce-2017-07-07.html | Patch Vendor Advisory |
https://bugs.debian.org/867579 | Issue Tracking Patch Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2017-07-17 06:18
Updated : 2017-07-26 18:30
NVD link : CVE-2017-11311
Mitre link : CVE-2017-11311
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
openmpt
- openmpt
- libopenmpt