Errata overview
Errata ID 320
Date 2018-11-21
Source package libopenmpt
Fixed in version 0.2.7386~beta20.3-3+deb9u3
This update addresses the following issue:
* soundlib/Snd_fx.cpp in OpenMPT allows remote attackers to cause a denial of
  service (out-of-bounds read) via an IT or MO3 file with many nested pattern
  loops. (CVE-2018-10017)
Additional notes
CVE ID CVE-2018-10017
UCS Bug number #48177