CVE-2022-34927
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-34927
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-34927.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-34927
- Downstream
- Published
- 2022-08-03T01:15:07.347Z
- Modified
- 2025-11-14T13:21:52.863968Z
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
MilkyTracker v1.03.00 was discovered to contain a stack overflow via the component LoaderXM::load. This vulnerability is triggered when the program is supplied a crafted XM module file.
- References
Affected packages
Git / github.com/milkytracker/milkytracker
Affected ranges
- Type
- GIT
- Repo
- https://github.com/milkytracker/milkytracker
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Database specific
vanir_signatures
[
{
"digest": {
"line_hashes": [
"92762678729644534731041799942737680000",
"263997541143629577749552266977049635344",
"224676694526586997915366558330786479696",
"113720897472328604541739210501823761945"
],
"threshold": 0.9
},
"id": "CVE-2022-34927-2af757c9",
"signature_version": "v1",
"target": {
"file": "src/milkyplay/LoaderXM.cpp"
},
"source": "https://github.com/milkytracker/milkytracker/commit/3a5474f9102cbdc10fbd9e7b1b2c8d3f3f45d91b",
"deprecated": false,
"signature_type": "Line"
},
{
"digest": {
"function_hash": "154008910926743438524962085660973975776",
"length": 16512.0
},
"id": "CVE-2022-34927-cb042e6a",
"signature_version": "v1",
"target": {
"file": "src/milkyplay/LoaderXM.cpp",
"function": "LoaderXM::load"
},
"source": "https://github.com/milkytracker/milkytracker/commit/3a5474f9102cbdc10fbd9e7b1b2c8d3f3f45d91b",
"deprecated": false,
"signature_type": "Function"
}
]
source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-34927.json"