MidnightBSD

Advisories for konstanty_bialkowski

CVE-2009-1438 HIGH

Integer overflow in the CSoundFile::ReadMed function (src/load_med.cpp) in libmodplug before 0.8.6, as used in gstreamer-plugins, TTPlayer, and other products, allows context-dependent attackers to execute arbitrary code via a MED file with a crafted (1) song comment or (2) song name, which triggers a heap-based buffer overflow, as exploited in the wild in August 2008.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-189,

Products Affected

Vendor Product Version
konstanty_bialkowski libmodplug *
konstanty_bialkowski libmodplug 0.8
konstanty_bialkowski libmodplug 0.8.4
CVE-2009-1513 MEDIUM

Buffer overflow in the PATinst function in src/load_pat.cpp in libmodplug before 0.8.7 allows user-assisted remote attackers to cause a denial of service and possibly execute arbitrary code via a long instrument name.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
konstanty_bialkowski libmodplug *
konstanty_bialkowski libmodplug 0.8
konstanty_bialkowski libmodplug 0.8.4
konstanty_bialkowski libmodplug 0.8.5
CVE-2011-1574 MEDIUM

Stack-based buffer overflow in the ReadS3M method in load_s3m.cpp in libmodplug before 0.8.8.2 allows remote attackers to execute arbitrary code via a crafted S3M file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
konstanty_bialkowski libmodplug 0.8.6
konstanty_bialkowski libmodplug *
konstanty_bialkowski libmodplug 0.8
konstanty_bialkowski libmodplug 0.8.7
konstanty_bialkowski libmodplug 0.8.8
konstanty_bialkowski libmodplug 0.8.4
konstanty_bialkowski libmodplug 0.8.5
CVE-2011-1761 MEDIUM

Multiple stack-based buffer overflows in the (1) abc_new_macro and (2) abc_new_umacro functions in src/load_abc.cpp in libmodplug before 0.8.8.3 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted ABC file. NOTE: some of these details are obtained from third party information.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
konstanty_bialkowski libmodplug 0.8.6
konstanty_bialkowski libmodplug 0.8.8.1
konstanty_bialkowski libmodplug *
konstanty_bialkowski libmodplug 0.8
konstanty_bialkowski libmodplug 0.8.7
konstanty_bialkowski libmodplug 0.8.8
konstanty_bialkowski libmodplug 0.8.4
konstanty_bialkowski libmodplug 0.8.5
CVE-2011-2911 MEDIUM

Integer overflow in the CSoundFile::ReadWav function in src/load_wav.cpp in libmodplug before 0.8.8.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted WAV file, which triggers a heap-based buffer overflow.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
konstanty_bialkowski libmodplug 0.8.6
konstanty_bialkowski libmodplug 0.8.8.1
konstanty_bialkowski libmodplug *
konstanty_bialkowski libmodplug 0.8
konstanty_bialkowski libmodplug 0.8.7
konstanty_bialkowski libmodplug 0.8.8
konstanty_bialkowski libmodplug 0.8.4
konstanty_bialkowski libmodplug 0.8.8.2
konstanty_bialkowski libmodplug 0.8.5
CVE-2011-2912 MEDIUM

Stack-based buffer overflow in the CSoundFile::ReadS3M function in src/load_s3m.cpp in libmodplug before 0.8.8.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted S3M file with an invalid offset.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
konstanty_bialkowski libmodplug 0.8.6
konstanty_bialkowski libmodplug 0.8.8.1
konstanty_bialkowski libmodplug *
konstanty_bialkowski libmodplug 0.8
konstanty_bialkowski libmodplug 0.8.7
konstanty_bialkowski libmodplug 0.8.8
konstanty_bialkowski libmodplug 0.8.4
konstanty_bialkowski libmodplug 0.8.8.2
konstanty_bialkowski libmodplug 0.8.5
CVE-2011-2913 MEDIUM

Off-by-one error in the CSoundFile::ReadAMS function in src/load_ams.cpp in libmodplug before 0.8.8.4 allows remote attackers to cause a denial of service (stack memory corruption) and possibly execute arbitrary code via a crafted AMS file with a large number of samples.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
konstanty_bialkowski libmodplug 0.8.6
konstanty_bialkowski libmodplug 0.8.8.1
konstanty_bialkowski libmodplug *
konstanty_bialkowski libmodplug 0.8
konstanty_bialkowski libmodplug 0.8.7
konstanty_bialkowski libmodplug 0.8.8
konstanty_bialkowski libmodplug 0.8.4
konstanty_bialkowski libmodplug 0.8.8.2
konstanty_bialkowski libmodplug 0.8.5
CVE-2011-2914 MEDIUM

Off-by-one error in the CSoundFile::ReadDSM function in src/load_dms.cpp in libmodplug before 0.8.8.4 allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via a crafted DSM file with a large number of samples.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
konstanty_bialkowski libmodplug 0.8.6
konstanty_bialkowski libmodplug 0.8.8.1
konstanty_bialkowski libmodplug *
konstanty_bialkowski libmodplug 0.8
konstanty_bialkowski libmodplug 0.8.7
konstanty_bialkowski libmodplug 0.8.8
konstanty_bialkowski libmodplug 0.8.4
konstanty_bialkowski libmodplug 0.8.8.2
konstanty_bialkowski libmodplug 0.8.5
CVE-2011-2915 MEDIUM

Off-by-one error in the CSoundFile::ReadAMS2 function in src/load_ams.cpp in libmodplug before 0.8.8.4 allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via a crafted AMS file with a large number of instruments.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
konstanty_bialkowski libmodplug 0.8.6
konstanty_bialkowski libmodplug 0.8.8.1
konstanty_bialkowski libmodplug *
konstanty_bialkowski libmodplug 0.8
konstanty_bialkowski libmodplug 0.8.7
konstanty_bialkowski libmodplug 0.8.8
konstanty_bialkowski libmodplug 0.8.4
konstanty_bialkowski libmodplug 0.8.8.2
konstanty_bialkowski libmodplug 0.8.5
CVE-2013-4233 MEDIUM

Integer overflow in the abc_set_parts function in load_abc.cpp in libmodplug 0.8.8.4 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted P header in an ABC file, which triggers a heap-based buffer overflow.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
konstanty_bialkowski libmodplug 0.8.6
konstanty_bialkowski libmodplug 0.8.8.1
konstanty_bialkowski libmodplug 0.8
konstanty_bialkowski libmodplug 0.8.8
debian debian_linux 6.0
konstanty_bialkowski libmodplug 0.8.8.3
debian debian_linux 7.0
konstanty_bialkowski libmodplug *
konstanty_bialkowski libmodplug 0.8.7
konstanty_bialkowski libmodplug 0.8.4
konstanty_bialkowski libmodplug 0.8.8.2
konstanty_bialkowski libmodplug 0.8.5
CVE-2013-4234 MEDIUM

Multiple heap-based buffer overflows in the (1) abc_MIDI_drum and (2) abc_MIDI_gchord functions in load_abc.cpp in libmodplug 0.8.8.4 and earlier allow remote attackers to cause a denial of service (memory corruption and crash) and possibly execute arbitrary code via a crafted ABC.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
konstanty_bialkowski libmodplug 0.8.6
konstanty_bialkowski libmodplug 0.8.8.1
konstanty_bialkowski libmodplug 0.8
konstanty_bialkowski libmodplug 0.8.8
debian debian_linux 6.0
konstanty_bialkowski libmodplug 0.8.8.3
debian debian_linux 7.0
konstanty_bialkowski libmodplug *
konstanty_bialkowski libmodplug 0.8.7
konstanty_bialkowski libmodplug 0.8.4
konstanty_bialkowski libmodplug 0.8.8.2
konstanty_bialkowski libmodplug 0.8.5