milkytracker/MilkyTracker

milkytracker/MilkyTracker

milkytracker.org

Releases12

Frequency1 year 3 weeks

Last Release 12 months ago

Stars2.05K

A Fasttracker II compatible music editor

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-34927 ↗	Aug 3, 2022Wednesday, 3 August 2022, 01:15	7.8 HIGH	—
MilkyTracker v1.03.00 was discovered to contain a stack overflow via the component LoaderXM::load. This vulnerability is triggered when the program is supplied a crafted XM module file.
CVE-2020-15569 ↗	Jul 6, 2020Monday, 6 July 2020, 14:15	5.5 MEDIUM	4.3 MEDIUM
PlayerGeneric.cpp in MilkyTracker through 1.02.00 has a use-after-free in the PlayerGeneric destructor.
CVE-2019-14496 ↗	Aug 1, 2019Thursday, 1 August 2019, 18:15	7.8 HIGH	6.8 MEDIUM
LoaderXM::load in LoaderXM.cpp in milkyplay in MilkyTracker 1.02.00 has a stack-based buffer overflow.
CVE-2019-14497 ↗	Aug 1, 2019Thursday, 1 August 2019, 18:15	7.8 HIGH	6.8 MEDIUM
ModuleEditor::convertInstrument in tracker/ModuleEditor.cpp in MilkyTracker 1.02.00 has a heap-based buffer overflow.
CVE-2019-14464 ↗	Jul 31, 2019Wednesday, 31 July 2019, 23:15	5.5 MEDIUM	4.3 MEDIUM
XMFile::read in XMFile.cpp in milkyplay in MilkyTracker 1.02.00 has a heap-based buffer overflow.