{"id":"CVE-2011-2912","details":"Stack-based buffer overflow in the CSoundFile::ReadS3M function in src/load_s3m.cpp in libmodplug before 0.8.8.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted S3M file with an invalid offset.","modified":"2025-08-09T19:01:28Z","published":"2012-06-07T19:55:04Z","references":[{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2011-1264.html"},{"type":"ADVISORY","url":"http://secunia.com/advisories/45131"},{"type":"ADVISORY","url":"http://secunia.com/advisories/45658"},{"type":"ADVISORY","url":"http://secunia.com/advisories/45742"},{"type":"ADVISORY","url":"http://secunia.com/advisories/45901"},{"type":"ADVISORY","url":"http://secunia.com/advisories/46032"},{"type":"ADVISORY","url":"http://secunia.com/advisories/46043"},{"type":"ADVISORY","url":"http://secunia.com/advisories/46793"},{"type":"ADVISORY","url":"http://secunia.com/advisories/48058"},{"type":"ADVISORY","url":"http://secunia.com/advisories/48434"},{"type":"ADVISORY","url":"http://secunia.com/advisories/48439"},{"type":"ADVISORY","url":"http://www.debian.org/security/2012/dsa-2415"},{"type":"WEB","url":"http://jira.atheme.org/browse/AUDPLUG-394"},{"type":"WEB","url":"http://lists.fedoraproject.org/pipermail/package-announce/2011-August/063786.html"},{"type":"WEB","url":"http://lists.fedoraproject.org/pipermail/package-announce/2011-September/066044.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00019.html"},{"type":"WEB","url":"http://modplug-xmms.git.sourceforge.net/git/gitweb.cgi?p=modplug-xmms/modplug-xmms%3Ba=commitdiff%3Bh=f4e5295658fff000379caa122e75c9200205fe20"},{"type":"WEB","url":"http://sourceforge.net/projects/modplug-xmms/files/libmodplug/0.8.8.4/"},{"type":"WEB","url":"http://ubuntu.com/usn/usn-1255-1"},{"type":"WEB","url":"http://www.gentoo.org/security/en/glsa/glsa-201203-14.xml"},{"type":"WEB","url":"http://www.gentoo.org/security/en/glsa/glsa-201203-16.xml"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2011/08/10/4"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2011/08/12/4"},{"type":"WEB","url":"http://www.osvdb.org/74209"},{"type":"WEB","url":"http://www.securityfocus.com/bid/48979"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/68984"}],"schema_version":"1.7.3"}