CVEs (5)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
MilkyTracker v1.03.00 was discovered to contain a stack overflow via the component LoaderXM::load. This vulnerability is triggered when the program is supplied a crafted XM module file. |
2Debian Milkytracker Project2Debian Linux MilkytrackerNov 21, 2024 Jul 6, 2020 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 PlayerGeneric.cpp in MilkyTracker through 1.02.00 has a use-after-free in the PlayerGeneric destructor. |
3Canonical DebianMilkytracker Project3Debian Linux MilkytrackerUbuntu LinuxNov 21, 2024 Aug 1, 2019 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 ModuleEditor::convertInstrument in tracker/ModuleEditor.cpp in MilkyTracker 1.02.00 has a heap-based buffer overflow. |
3Canonical DebianMilkytracker Project3Debian Linux MilkytrackerUbuntu LinuxNov 21, 2024 Aug 1, 2019 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 LoaderXM::load in LoaderXM.cpp in milkyplay in MilkyTracker 1.02.00 has a stack-based buffer overflow. |
4Canonical DebianFedoraproject+1 more4Debian Linux FedoraMilkytracker+1 moreNov 21, 2024 Jul 31, 2019 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 XMFile::read in XMFile.cpp in milkyplay in MilkyTracker 1.02.00 has a heap-based buffer overflow. |