Lucene search
+L

28 matches found

OSV
OSV
added 2019/02/07 7:29 a.m.3 views

DEBIAN-CVE-2019-7576

SDL Simple DirectMedia Layer through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitMSADPCM in audio/SDLwave.c outside the wNumCoef loop...

8.8CVSS9.4AI score0.02946EPSS
Exploits1References1
CVE
CVE
added 2019/02/07 12:0 a.m.250 views

CVE-2019-7577

CVE-2019-7577 affects SDL: a buffer over-read in audio/SDL_wave.c (SDL_LoadWAV_RW) linked to SDL 1.2.15 and 2.x up to 2.0.9. Connected advisories confirm multiple SDL-related CVEs with similar memory issues (buffer over-reads/overflows) across libsdl1.2/libsdl2 and SDL components, risking arbitra...

8.8CVSS8.8AI score0.02992EPSS
Exploits1References19Affected Software1
CVE
CVE
added 2019/02/07 12:0 a.m.258 views

CVE-2019-7574

CVE-2019-7574 affects SDL (libsdl1.2 and libsdl2) up to SDL 1.2.15 and 2.x up to 2.0.9, caused by a heap-based buffer over-read in IMA_ADPCM_decode inside audio/SDL_wave.c. Multiple vendor advisories (Arch Linux ASA-201908-5, Debian DLA entries, AlmaLinux ALAS2-2020-1500, CentOS/CESA notes) docum...

8.8CVSS8.8AI score0.02806EPSS
Exploits1References16Affected Software1
AlpineLinux
AlpineLinux
added 2019/02/07 12:0 a.m.47 views

CVE-2019-7573

SDL Simple DirectMedia Layer through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitMSADPCM in audio/SDLwave.c inside the wNumCoef loop...

8.8CVSS9AI score0.02959EPSS
Exploits1
AlpineLinux
AlpineLinux
added 2019/02/07 12:0 a.m.32 views

CVE-2019-7574

SDL Simple DirectMedia Layer through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in IMAADPCMdecode in audio/SDLwave.c...

8.8CVSS9AI score0.02806EPSS
Exploits1
CVE
CVE
added 2019/02/07 12:0 a.m.241 views

CVE-2019-7576

SDL (libsdl1.2/SDL2) up to affected 1.2.x/2.x versions has a heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c (outside the wNumCoef loop). Exploitation can enable arbitrary code execution via crafted media files. Upgrades to SDL2 2.0.10+ and SDL 1.2.15-13+/libsdl1.2 1.2.15-13+ are ...

8.8CVSS8.7AI score0.02946EPSS
Exploits1References16Affected Software1
CVE
CVE
added 2019/02/07 12:0 a.m.238 views

CVE-2019-7573

CVE-2019-7573 affects SDL (1.2.15 and 2.x up to 2.0.9). The vulnerability is a heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c (within the wNumCoef loop). Exploitation could allow arbitrary code execution on affected hosts. Remediation is to upgrade SDL to a fixed release (SDL 1.2...

8.8CVSS8.7AI score0.02959EPSS
Exploits1References16Affected Software1
Debian CVE
Debian CVE
added 2019/02/07 12:0 a.m.36 views

CVE-2019-7573

SDL Simple DirectMedia Layer through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitMSADPCM in audio/SDLwave.c inside the wNumCoef loop...

8.8CVSS7.3AI score0.02959EPSS
Exploits1
Rows per page
Query Builder