{"id":"CVE-2018-10753","details":"Stack-based buffer overflow in the delayed_output function in music.c in abcm2ps through 8.13.20 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact.","modified":"2026-05-18T05:50:18.715580917Z","published":"2018-05-05T02:29:00.283Z","database_specific":{"unresolved_ranges":[{"source":"CPE_FIELD","vendor_product":"debian:debian_linux","extracted_events":[{"last_affected":"9.0"}],"cpes":["cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*"]},{"source":"CPE_FIELD","vendor_product":"fedoraproject:fedora","extracted_events":[{"last_affected":"30"},{"last_affected":"31"},{"last_affected":"32"}],"cpes":["cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*","cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*","cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*"]}]},"references":[{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IGDXW2I3MY3QH4PJXLJET5QZZXMXTNWO/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LSTB65NYYCKU7O6RF5B6CYY5IA6CA66Y/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W6DUTXB4EC3TQHTTAAIBKJ54GJTF6Y7V/"},{"type":"ADVISORY","url":"https://drive.google.com/drive/u/2/folders/1DvBEh5D-eW4UkvX3947UQh62i7hUIFN1"},{"type":"ADVISORY","url":"https://github.com/leesavide/abcm2ps/issues/16"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2022/04/msg00015.html"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/lewdlime/abcm2ps","events":[{"introduced":"0"},{"last_affected":"71589e688802a5e100e2e61e771d434499bd089f"}],"database_specific":{"source":"CPE_FIELD","extracted_events":[{"introduced":"0"},{"last_affected":"8.13.20"}],"cpe":"cpe:2.3:a:moinejf:abcm2ps:*:*:*:*:*:*:*:*"}}],"versions":["v8.13.20","v8.13.19","v8.13.18","v8.13.17","v8.13.16","v8.13.15","v8.13.14","abcm2ps-8.13.13","abcm2ps-8.13.12","abcm2ps-8.13.11","abcm2ps-8.13.10","abcm2ps-8.13.9","abcm2ps-8.13.8","abcm2ps-8.13.7","abcm2ps-8.13.5","abcm2ps-8.13.4","abcm2ps-8.13.3","abcm2ps-8.13.2","abcm2ps-8.13.1","abcm2ps-8.13.0","abcm2ps-8.12.9","abcm2ps-8.12.8","abcm2ps-8.12.4","abcm2ps-8.12.1","abcm2ps-8.11.7","abcm2ps-8.11.5","abcm2ps-7.8.14","abcm2ps-6.6.22","abcm2ps-5.9.25","abcm2ps-4.12.30","abcm2ps-3.7.21","abcm2ps-2.11.3","abcm2ps-1.6.12"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-10753.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}