CVE-2018-18193

HIGH

Linuxsampler Libgig - Memory Corruption

Title source: rule

An issue was discovered in libgig 4.1.0. There is operator new[] failure (due to a big pWavePoolTable heap request) in DLS::File::File in DLS.cpp.

Core 1

Core References

Exploit, Third Party Advisory x_refsource_misc

CVSS v3 8.8

EPSS 0.0038

EPSS Percentile 59.3%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE

CWE-119

Status published

Products (1)

linuxsampler/libgig 4.1.0

Published Oct 09, 2018

Tracked Since Feb 18, 2026