Bsdboy

**Name of the Vulnerable Software and Affected Versions** Schism Tracker version 20200412 **Description** The issue allows an attacker to obtain sensitive information via the `fmt mtm load song` function in fmt/mtm.c. **Recommendations** For Schism Tracker version 20200412, consider disabling the `fmt mtm load song` function until a patch is available.

**Name of the Vulnerable Software and Affected Versions** md4c version 0.4.7 **Description** The issue is related to the `md analyze line` function in `md4c.c`, which allows attackers to trigger the use of uninitialized memory. This can cause a denial of service via a malformed Markdown document. The vulnerability can be exploited by a remote attacker to disrupt service. **Recommendations** For md4c version 0.4.7, consider disabling the `md analyze line` function in `md4c.c` until a patch is available to prevent the use of uninitialized memory and potential denial of service attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.