Schismtracker Schism Tracker vulnerabilities

CVE-2021-32419 [MEDIUM] CWE-787 CVE-2021-32419: An issue in Schism Tracker v20200412 fixed in v.20200412 allows attacker to obtain sensitive informa An issue in Schism Tracker v20200412 fixed in v.20200412 allows attacker to obtain sensitive information via the fmt_mtm_load_song function in fmt/mtm.c.

CVE-2019-14523 [HIGH] CWE-191 CVE-2019-14523: An issue was discovered in Schism Tracker through 20190722. There is an integer underflow via a larg An issue was discovered in Schism Tracker through 20190722. There is an integer underflow via a large plen in fmt_okt_load_song in the Amiga Oktalyzer parser in fmt/okt.c.

CVE-2019-14524 [HIGH] CVE-2019-14524: An issue was discovered in Schism Tracker through 20190722. There is a heap-based buffer overflow vi An issue was discovered in Schism Tracker through 20190722. There is a heap-based buffer overflow via a large number of song patterns in fmt_mtm_load_song in fmt/mtm.c, a different vulnerability than CVE-2019-14465.

CVE-2019-14465 [HIGH] CWE-787 CVE-2019-14465: fmt_mtm_load_song in fmt/mtm.c in Schism Tracker 20190722 has a heap-based buffer overflow. fmt_mtm_load_song in fmt/mtm.c in Schism Tracker 20190722 has a heap-based buffer overflow.