An issue was discovered in AdPlug 2.3.1. There are several double-free vulnerabilities in the CEmuopl class in emuopl.cpp because of a destructors two OPLDestroy calls, each of which frees TL_TABLE, SIN_TABLE, AMS_TABLE, and VIB_TABLE.
The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Adplug | Adplug_project | 2.3.1 (including) | 2.3.1 (including) |
Adplug | Ubuntu | bionic | * |
Adplug | Ubuntu | cosmic | * |
Adplug | Ubuntu | trusty | * |
Adplug | Ubuntu | upstream | * |
Adplug | Ubuntu | xenial | * |