CVE-2018-17825

Publication date 1 October 2018

Last updated 25 August 2025


Ubuntu priority

Cvss 3 Severity Score

9.8 · Critical

Score breakdown

Description

An issue was discovered in AdPlug 2.3.1. There are several double-free vulnerabilities in the CEmuopl class in emuopl.cpp because of a destructor's two OPLDestroy calls, each of which frees TL_TABLE, SIN_TABLE, AMS_TABLE, and VIB_TABLE.

Status

Package Ubuntu Release Status
adplug 19.04 disco
Not affected
18.10 cosmic
Fixed 2.2.1+dfsg3-1~build0.18.10.1
18.04 LTS bionic
Fixed 2.2.1+dfsg3-1~build0.18.04.1
16.04 LTS xenial
Fixed 2.2.1+dfsg3-1~build0.16.04.1
14.04 LTS trusty Not in release

Severity score breakdown

CVSS version: CVSS v3.0

Base score 9.8 · Critical

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H


Access our resources on patching vulnerabilities