linuxsampler 関連製品全体の CVE とセキュリティ脆弱性情報を集約し、CVSS、EPSS、公開日、脆弱性情報データを掲載しています。
公開された問題は vendor risk memory corruption and バッファオーバーフロー に関連することが多く、vendor surface production workloads and vendor surface software deployment の文脈で vendor impact memory corruption and アプリケーションクラッシュ などの暴露リスクを伴う場合があります。
掲載データは公開脆弱性情報とセキュリティ公告に基づき、過去の暴露面と修補優先度の評価に利用できます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2021-32294 | An issue was discovered in libgig through 20200507. A heap-buffer-overflow exists in the function RIFF::List::GetSubList located in RIFF.cpp. It allows an attacker to cause code Execution. | [email protected] | 8.8 | 0.55% | 2021-09-20 | 2024-11-21 |
| CVE-2018-18197 | An issue was discovered in libgig 4.1.0. There is an operator new[] failure (due to a big pSampleLoops heap request) in DLS::Sampler::Sampler in DLS.cpp. | [email protected] | 9.8 | 0.43% | 2018-10-09 | 2024-11-21 |
| CVE-2018-18196 | An issue was discovered in libgig 4.1.0. There is a heap-based buffer over-read in RIFF::List::GetListTypeString in RIFF.cpp. | [email protected] | 8.8 | 0.22% | 2018-10-09 | 2024-11-21 |
| CVE-2018-18195 | An issue was discovered in libgig 4.1.0. There is an FPE (divide-by-zero error) in DLS::Sample::Sample in DLS.cpp. | [email protected] | 6.5 | 0.29% | 2018-10-09 | 2024-11-21 |
| CVE-2018-18194 | An issue was discovered in libgig 4.1.0. There is a heap-based buffer over-read in DLS::Region::GetSample() in DLS.cpp. | [email protected] | 8.8 | 0.40% | 2018-10-09 | 2024-11-21 |
| CVE-2018-18193 | An issue was discovered in libgig 4.1.0. There is operator new[] failure (due to a big pWavePoolTable heap request) in DLS::File::File in DLS.cpp. | [email protected] | 8.8 | 0.40% | 2018-10-09 | 2024-11-21 |
| CVE-2018-18192 | An issue was discovered in libgig 4.1.0. There is a NULL pointer dereference in the function DLS::File::GetFirstSample() in DLS.cpp. | [email protected] | 6.5 | 0.29% | 2018-10-09 | 2024-11-21 |
| CVE-2018-14459 | An issue was discovered in libgig 4.1.0. There is an out-of-bounds write in pData[0] access in the function store16 in helper.h. | [email protected] | 8.8 | 0.40% | 2018-07-20 | 2024-11-21 |
| CVE-2018-14458 | An issue was discovered in libgig 4.1.0. There is a heap-based buffer overflow in pData[1] access in the function store32 in helper.h. | [email protected] | 8.8 | 0.42% | 2018-07-20 | 2024-11-21 |
| CVE-2018-14457 | An issue was discovered in libgig 4.1.0. There is an out-of-bounds write in the function DLS::Info::UpdateChunks in DLS.cpp. | [email protected] | 8.8 | 0.40% | 2018-07-20 | 2024-11-21 |
| CVE-2018-14456 | An issue was discovered in libgig 4.1.0. There is an out-of-bounds write in the function DLS::Info::SaveString in DLS.cpp. | [email protected] | 8.8 | 0.40% | 2018-07-20 | 2024-11-21 |
| CVE-2018-14455 | An issue was discovered in libgig 4.1.0. There is an out-of-bounds write in pData[0] access in the function store32 in helper.h. | [email protected] | 8.8 | 0.40% | 2018-07-20 | 2024-11-21 |
| CVE-2018-14454 | An issue was discovered in libgig 4.1.0. There is an out-of-bounds read in the function RIFF::Chunk::Read in RIFF.cpp. | [email protected] | 8.8 | 0.40% | 2018-07-20 | 2024-11-21 |
| CVE-2018-14453 | An issue was discovered in libgig 4.1.0. There is a heap-based buffer overflow in pData[1] access in the function store16 in helper.h. | [email protected] | 8.8 | 0.42% | 2018-07-20 | 2024-11-21 |
| CVE-2018-14452 | An issue was discovered in libgig 4.1.0. There is an out-of-bounds read in the "always assign the sample of the first dimension region of this region" feature of the function gig::Region::UpdateChunks in gig.cpp. | [email protected] | 8.8 | 0.40% | 2018-07-20 | 2024-11-21 |
| CVE-2018-14451 | An issue was discovered in libgig 4.1.0. There is a heap-based buffer overflow in the function RIFF::Chunk::Read in RIFF.cpp. | [email protected] | 8.8 | 0.42% | 2018-07-20 | 2024-11-21 |
| CVE-2018-14450 | An issue was discovered in libgig 4.1.0. There is an out-of-bounds read in the "update dimension region's chunks" feature of the function gig::Region::UpdateChunks in gig.cpp. | [email protected] | 8.8 | 0.40% | 2018-07-20 | 2024-11-21 |
| CVE-2018-14449 | An issue was discovered in libgig 4.1.0. There is an out of bounds read in gig::File::UpdateChunks in gig.cpp. | [email protected] | 8.8 | 0.40% | 2018-07-20 | 2024-11-21 |
| CVE-2017-12950 | The gig::Region::Region function in gig.cpp in libgig 4.0.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted gig file. | [email protected] | 6.5 | 4.37% | 2017-08-28 | 2026-05-13 |