639 matches found
Debian Security Advisory DSA 1493-1 (sdl-image1.2)
The remote host is missing an update to sdl-image1.2 announced via advisory DSA 1493-1. This VT has been deprecated and merged into the VT SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...
Debian DSA-1493-2 : sdl-image1.2 - buffer overflows
Several local/remote vulnerabilities have been discovered in the image loading library for the Simple DirectMedia Layer 1.2. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-6697 Gynvael Coldwind discovered a buffer overflow in GIF image parsing, whi...
[SECURITY] [DSA 1493-1] New sdl-image1.2 packages fix arbitrary code execution
------------------------------------------------------------------------ Debian Security Advisory DSA-1493-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff February 10, 2008 http://www.debian.org/security/faq -...
DSA-1493-1 sdl-image1.2
Bulletin has no description...
SDL_image: Two buffer overflow vulnerabilities
Background SDLimage is an image file library that loads images as SDL surfaces, and supports various formats like BMP, GIF, JPEG, LBM, PCX, PNG, PNM, TGA, TIFF, XCF, XPM, and XV. Description The LWZReadByte function in file IMGgif.c and the IMGLoadLBMRW function in file IMGlbm.c each contain a...
[SECURITY] Fedora 8 Update: SDL_image-1.2.6-5.fc8
Simple DirectMedia Layer SDL is a cross-platform multimedia library designed to provide fast access to the graphics frame buffer and audio device. This package contains a simple library for loading images of various formats BMP, PPM, PCX, GIF, JPEG, PNG as SDL surfaces...
CVE-2008-0544
Heap-based buffer overflow in the IMGLoadLBMRW function in IMGlbm.c in SDLimage before 1.2.7 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted IFF ILBM file. NOTE: some of these details are obtained from third party information...
CVE-2007-6697
Buffer overflow in the LWZReadByte function in IMGgif.c in SDLimage before 1.2.7 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted GIF file, a similar issue to CVE-2006-4484. NOTE: some of these details are obtained from third...
DEBIAN-CVE-2007-6697
Buffer overflow in the LWZReadByte function in IMGgif.c in SDLimage before 1.2.7 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted GIF file, a similar issue to CVE-2006-4484. NOTE: some of these details are obtained from third...
CVE-2005-0099
The SDL port of abuse abuse-SDL before 2.00 does not properly drop privileges before creating certain files, which allows local users to create or overwrite arbitrary files...
CVE-2005-0098
The CVE-2005-0098 entry concerns abuse, the SDL port of the Abuse game. Official advisories (CAN-2005-0098 and CAN-2005-0099) describe local, pre-2.00 buffer overflows in command-line handling that could let an attacker gain arbitrary code execution with elevated privileges, and file-creation fla...
CVE-2005-0099
The CVE relates to the SDL port of abuse (abuse-SDL) prior to version 2.00, where privileges were not dropped before creating certain files. This allows local users to create or overwrite arbitrary files. Debian and SUSE advisories confirm the issue as CAN-2005-0099 with a local-priority impact; ...
CVE-2005-0098
Multiple buffer overflows in the SDL port of abuse abuse-SDL before 2.00 allow local users to execute arbitrary code via the command line...
CVE-2005-0098
Multiple buffer overflows in the SDL port of abuse abuse-SDL before 2.00 allow local users to execute arbitrary code via the command line...
CVE-2005-0099
The SDL port of abuse abuse-SDL before 2.00 does not properly drop privileges before creating certain files, which allows local users to create or overwrite arbitrary files...
CVE-2005-0099
The SDL port of abuse abuse-SDL before 2.00 does not properly drop privileges before creating certain files, which allows local users to create or overwrite arbitrary files...
Debian DSA-691-1 : abuse - several vulnerabilities
Several vulnerabilities have been discovered in abuse, the SDL port of the Abuse action game. The Common Vulnerabilities and Exposures project identifies the following problems : - CAN-2005-0098 Erik Sjolund discovered several buffer overflows in the command line handling, which could lead to the...
LBreakout2 2.x - Login Remote Format String
LBreakout2 2.x - Login Remote Format String / source: https://www.securityfocus.com/bid/8021/info It has been reported that lbreakout2 is vulnerable to a format string issue in the login component. This may result in an attacker executing arbitrary code on a vulnerable host. / / lbreakout2-2.5+:...
Abuse-SDL 0.7 - Command Line Argument Buffer Overflow
// source: https://www.securityfocus.com/bid/7982/info A buffer overflow vulnerability has been reported for Abuse-SDL that may result in the execution of attacker-supplied code. The vulnerability exists due to insufficient bounds checking performed on certain command-line options. / hey all.. th...