Vulnerability Details CVE-2020-15569
PlayerGeneric.cpp in MilkyTracker through 1.02.00 has a use-after-free in the PlayerGeneric destructor.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 42.5%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 4.3
References
- https://github.com/milkytracker/MilkyTracker/commit/7afd55c42ad80d01a339197a2d8b5461d214edaf
- https://lists.debian.org/debian-lts-announce/2020/07/msg00023.html
- https://github.com/milkytracker/MilkyTracker/commit/7afd55c42ad80d01a339197a2d8b5461d214edaf
- https://lists.debian.org/debian-lts-announce/2020/07/msg00023.html
Products affected by CVE-2020-15569
-
cpe:2.3:a:milkytracker_project:milkytracker:0.90.80
-
cpe:2.3:a:milkytracker_project:milkytracker:0.90.85
-
cpe:2.3:a:milkytracker_project:milkytracker:0.90.86
-
cpe:2.3:a:milkytracker_project:milkytracker:1.0.0
-
cpe:2.3:a:milkytracker_project:milkytracker:1.0.1.00
-
cpe:2.3:a:milkytracker_project:milkytracker:1.02.00
-
cpe:2.3:o:debian:debian_linux:9.0