milkytracker-1.02.00-5.fc31
FEDORA-2019-3d5f61419f created by muep 11 months ago for Fedora 31
stable

Security fix for CVE-2019-14464

How to install

sudo dnf upgrade --advisory=FEDORA-2019-3d5f61419f

This update has been submitted for testing by muep.

11 months ago

This update's test gating status has been changed to 'waiting'.

11 months ago

This update's test gating status has been changed to 'ignored'.

11 months ago

This update has been pushed to testing.

11 months ago
User Icon muep commented & provided feedback 11 months ago

File that crashes 1.02.00-4 is available from

https://github.com/milkytracker/MilkyTracker/issues/184

On my system, the file is correctly detected as corrupt. The program refuses to load it, giving an error dialog instead.

BZ#1771387 CVE-2019-14464 milkytracker: heap-based buffer overflow in XMFile::read in XMFile.cpp
BZ#1771388 CVE-2019-14464 milkytracker: heap-based buffer overflow in XMFile::read in XMFile.cpp [fedora-all]

This update can be pushed to stable now if the maintainer wishes

10 months ago

This update has been submitted for stable by bodhi.

10 months ago

This update has been pushed to stable.

10 months ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Builds
1
milkytracker-1.02.00-5.fc31
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
11 months ago
in testing
11 months ago
in stable
10 months ago
BZ#1771387 CVE-2019-14464 milkytracker: heap-based buffer overflow in XMFile::read in XMFile.cpp
0
1
BZ#1771388 CVE-2019-14464 milkytracker: heap-based buffer overflow in XMFile::read in XMFile.cpp [fedora-all]
0
1

Automated Test Results

Copyright © 2007-2019 Red Hat, Inc. and others.

Running bodhi-5.5 on bodhi-web-70-chqh4.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy