Bug#964797: milkytracker: CVE-2020-15569
Source: milkytracker
Version: 1.02.00+dfsg-2
Severity: important
Tags: security upstream
X-Debbugs-Cc: Debian Security Team <team@security.debian.org>
Control: found -1 1.02.00+dfsg-1
Hi,
The following vulnerability was published for milkytracker.
CVE-2020-15569[0]:
| PlayerGeneric.cpp in MilkyTracker through 1.02.00 has a use-after-free
| in the PlayerGeneric destructor.
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2020-15569
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15569
[1] https://github.com/milkytracker/MilkyTracker/commit/7afd55c42ad80d01a339197a2d8b5461d214edaf
Regards,
Salvatore
Reply to: