Note:
This project will be discontinued after December 13, 2021. [more]
2019-07-31
XMFile::read in XMFile.cpp in milkyplay in MilkyTracker 1.02.00 has a heap-based buffer overflow.
Products | Ubuntu_linux, Debian_linux, Fedora, Milkytracker |
Type | Out-of-bounds Write (CWE-787) |
First patch | - None (likely due to unavailable code) |
Links |
• https://lists.debian.org/debian-lts-announce/2019/10/msg00029.html
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CXYRVXOPO223DAUJHFQCTKQHIZ6XN35P/ • https://github.com/milkytracker/MilkyTracker/issues/184 • https://usn.ubuntu.com/4499-1/ • https://lists.debian.org/debian-lts-announce/2020/07/msg00023.html |