Vulnerability CVE-2018-17825: Information

Description

An issue was discovered in AdPlug 2.3.1. There are several double-free vulnerabilities in the CEmuopl class in emuopl.cpp because of a destructor's two OPLDestroy calls, each of which frees TL_TABLE, SIN_TABLE, AMS_TABLE, and VIB_TABLE.

Severity: CRITICAL (9.8) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

URL: https://nvd.nist.gov/vuln/detail/CVE-2018-17825
Published: Oct. 1, 2018
Modified: Nov. 21, 2024
Error type identifier: CWE-415

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
libadplugsisyphus2.2.1-alt32.3.3-alt1.git104.g66b19f6ALT-PU-2019-2765-1237968Fixed
libadplugp102.2.1-alt32.2.1-alt3ALT-PU-2019-2765-1237968Fixed
libadplugp92.2.1-alt32.2.1-alt3ALT-PU-2019-2774-1238027Fixed
libadplugc10f22.2.1-alt32.2.1-alt3ALT-PU-2019-2765-1237968Fixed
libadplugc9f22.2.1-alt32.2.1-alt3ALT-PU-2019-2774-1238027Fixed
libadplugp112.2.1-alt32.3.3-alt1.git104.g66b19f6ALT-PU-2019-2765-1237968Fixed

References to Advisories, Solutions, and Tools

Hyperlink
Resource
https://github.com/adplug/adplug/issues/67
  • Exploit
  • Third Party Advisory
https://github.com/adplug/adplug/issues/67
  • Exploit
  • Third Party Advisory
FEDORA-2021-24ef21134b
    FEDORA-2021-24ef21134b
      FEDORA-2021-64168929e4
        FEDORA-2021-64168929e4

            1. Configuration 1

              cpe:2.3:a:adplug_project:adplug:2.3.1:*:*:*:*:*:*:*

              Configuration 2

              cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
              cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
          VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
          Version: v25.2.1
          Back to top