Lucene search
+L

12 matches found

nessus
nessus
added 2020/02/10 12:0 a.m.56 views

Fedora 31 : mingw-SDL2 (2020-ff2fe47ba4)

MinGW cross compiled SDL 2.0.10, fixing a number of CVE issues. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

8.8CVSS6.1AI score0.03299EPSS
Exploits9References10
openvas
openvas
added 2020/01/15 12:0 a.m.32 views

Ubuntu: Security Advisory (USN-4238-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.3AI score0.04515EPSS
Exploits12References2
mageia
mageia
added 2019/12/06 2:15 p.m.80 views

Updated SDL_image packages fix security vulnerabilities

The updated packages fix security vulnerabilities: An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2image-2.0.3. A specially crafted XCF image can cause a heap overflow, resulting in code execution. An attacker can display a specially crafted imag...

8.8CVSS2.3AI score0.04515EPSS
Exploits11References2
nessus
nessus
added 2019/09/25 12:0 a.m.29 views

Fedora 29 : SDL2_image (2019-a6bc0fb143)

Update to SDL2Image 2.0.5 for multiple CVEs. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C...

8.8CVSS6.1AI score0.02269EPSS
Exploits7References8
openvas
openvas
added 2019/09/06 12:0 a.m.28 views

openSUSE: Security Advisory for SDL2_image (openSUSE-SU-2019:2070-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS8.1AI score0.04515EPSS
Exploits9References2
redhatcve
redhatcve
added 2019/07/23 5:53 a.m.34 views

CVE-2019-12220

An issue was discovered in libSDL2.a in Simple DirectMedia Layer SDL 2.0.9 when used in conjunction with libSDL2image.a in SDL2image 2.0.4. There is an out-of-bounds read in the SDL function SDLFreePaletteREAL at video/SDLpixels.c...

7.3CVSS3.1AI score0.0187EPSS
Exploits1References3
openvas
openvas
added 2019/07/23 12:0 a.m.113 views

Debian: Security Advisory (DLA-1861-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.2AI score0.04515EPSS
Exploits11References3
osv
osv
added 2019/05/20 5:29 p.m.7 views

CVE-2019-12220

An issue was discovered in libSDL2.a in Simple DirectMedia Layer SDL 2.0.9 when used in conjunction with libSDL2image.a in SDL2image 2.0.4. There is an out-of-bounds read in the SDL function SDLFreePaletteREAL at video/SDLpixels.c...

6.5CVSS8.6AI score
Exploits0References8
ubuntucve
ubuntucve
added 2019/05/20 5:29 p.m.29 views

CVE-2019-12220

An issue was discovered in libSDL2.a in Simple DirectMedia Layer SDL 2.0.9 when used in conjunction with libSDL2image.a in SDL2image 2.0.4. There is an out-of-bounds read in the SDL function SDLFreePaletteREAL at video/SDLpixels.c...

6.5CVSS6.8AI score0.0187EPSS
Exploits1References2
osv
osv
added 2019/05/20 5:29 p.m.1 views

BELL-CVE-2019-12220 CVE-2019-12220 does not affect BellSoft software

Bulletin has no description...

6.5CVSS5.8AI score0.0187EPSS
Exploits1References1
cve
cve
added 2019/05/20 4:33 p.m.160 views

CVE-2019-12220

CVE-2019-12220 affects libSDL2.a in SDL 2.0.9 when used with SDL2_image 2.0.4. There is an out-of-bounds read in SDL_FreePalette_REAL (video/SDL_pixels.c). Documented impact is an out-of-bounds read; CVSS data from NVD shows a MEDIUM base severity (6.5 CVSS3) with HIGH availability impact, but ex...

6.5CVSS7.1AI score0.0187EPSS
Exploits1References8Affected Software2
debiancve
debiancve
added 2019/05/20 4:33 p.m.49 views

CVE-2019-12220

An issue was discovered in libSDL2.a in Simple DirectMedia Layer SDL 2.0.9 when used in conjunction with libSDL2image.a in SDL2image 2.0.4. There is an out-of-bounds read in the SDL function SDLFreePaletteREAL at video/SDLpixels.c...

6.5CVSS7.5AI score0.0187EPSS
Exploits1
Rows per page
Query Builder