Debian dla-3314 : libsdl2-2.0-0 - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3314 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3314-1 [email protected]...

Ubuntu: Security Advisory (USN-5274-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for SDL (SUSE-SU-2022:1273-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

SUSE SLES11 Security Update : SDL (SUSE-SU-2022:14943-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:14943-1 advisory. - SDL Simple DirectMedia Layer through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer overflow in SDLFillRect in video/SDLsurface.c...

openSUSE: Security Advisory for SDL2 (openSUSE-SU-2022:0104-2)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

openSUSE: Security Advisory for SDL2 (openSUSE-SU-2022:0104-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

SUSE SLED15 / SLES15 Security Update : SDL2 (SUSE-SU-2022:0104-1)

The remote SUSE Linux SLED15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0104-1 advisory. - SDL Simple DirectMedia Layer through 2.0.12 has an Integer Overflow and resultant SDLmemcpy heap corruption in SDLBlitCo...

SUSE SLES11 Security Update : curl (SUSE-SU-2020:14409-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2020:14409-1 advisory. - curl 7.20.0 through 7.70.0 is vulnerable to improper restriction of names for files and other resources that can lead too overwriting a local file...

SUSE: Security Advisory (SUSE-SU-2020:14409-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Updated sdl2 packages fix security vulnerabilities

This update fixes two security vulnerabilities which could result in heap corruption or over-read with crafted .BMP files CVE-2020-14409, CVE-2020-14410...

CVE-2020-14409

creationtimestamp| type| source ---|---|--- 2021-01-19 22:25:18+00:00| seen| https://t.me/cibsecurity/22299...

BELL-CVE-2020-14409 CVE-2020-14409 does not affect BellSoft software

Bulletin has no description...

CVE-2020-14409

CVE-2020-14409 affects SDL2 up to version 2.0.12. The vulnerability is an Integer Overflow in SDL_BlitCopy (video/SDL_blit_copy.c) triggered by processing a crafted BMP file, causing SDL_memcpy heap corruption and potential instability. Connected advisories (SUSE, Debian, Ubuntu) reference this C...