{"schema_version":"1.7.2","id":"OESA-2022-1831","modified":"2022-08-13T11:04:08Z","published":"2022-08-13T11:04:08Z","upstream":["CVE-2017-17446"],"summary":"game-music-emu security update","details":"Game_Music_Emu is a collection of video game music file simulators that supports the following formats and systems:\r\n\r\nSecurity Fix(es):\r\n\r\nThe Mem_File_Reader::read_avail function in Data_Reader.cpp in the Game_Music_Emu library (aka game-music-emu) 0.6.1 does not ensure a non-negative size, which allows remote attackers to cause a denial of service (application crash) via a crafted file.(CVE-2017-17446)","affected":[{"package":{"ecosystem":"openEuler:22.03-LTS","name":"game-music-emu","purl":"pkg:rpm/openEuler/game-music-emu\u0026distro=openEuler-22.03-LTS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.6.2-1.oe2203"}]}],"ecosystem_specific":{"aarch64":["game-music-emu-0.6.2-1.oe2203.aarch64.rpm","game-music-emu-debuginfo-0.6.2-1.oe2203.aarch64.rpm","game-music-emu-debugsource-0.6.2-1.oe2203.aarch64.rpm","game-music-emu-devel-0.6.2-1.oe2203.aarch64.rpm"],"src":["game-music-emu-0.6.2-1.oe2203.src.rpm"],"x86_64":["game-music-emu-0.6.2-1.oe2203.x86_64.rpm","game-music-emu-debugsource-0.6.2-1.oe2203.x86_64.rpm","game-music-emu-debuginfo-0.6.2-1.oe2203.x86_64.rpm","game-music-emu-devel-0.6.2-1.oe2203.x86_64.rpm"]}}],"references":[{"type":"ADVISORY","url":"https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2022-1831"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2017-17446"}],"database_specific":{"severity":"Medium"}}