Lucene search
K

6 matches found

OSV
OSV
added 2020/01/07 9:15 p.m.5 views

CVE-2019-14906

A flaw was found with the RHSA-2019:3950 erratum, where it did not fix the CVE-2019-13616 SDL vulnerability. This issue only affects Red Hat SDL packages, SDL versions through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer overflow flaw while copying an existing surface into a new optimized...

9.8CVSS8.2AI score0.01752EPSS
Exploits0References1
CVE
CVE
added 2020/01/07 8:5 p.m.206 views

CVE-2019-14906

CVE-2019-14906 is a confirmed SDL vulnerability affecting SDL 1.2.15 and 2.x up to 2.0.9. The issue is a heap-based buffer overflow when copying an existing surface into a new optimized one due to insufficient validation while loading BMP images (SDL_LoadBMP_RW), enabling potential code execution...

9.8CVSS8.6AI score0.01752EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/12/19 12:0 a.m.44 views

Amazon Linux 2 : SDL (ALAS-2019-1375)

A heap-based buffer overflow flaw, in SDL while copying an existing surface into a new optimized one, due to a lack of validation while loading a BMP image, is possible. An application that uses SDL to parse untrusted input files may be vulnerable to this flaw, which could allow an attacker to ma...

9.8CVSS6.9AI score0.03299EPSS
Exploits1References3
Cent OS
Cent OS
added 2019/12/06 11:34 p.m.230 views

SDL security update

CentOS Errata and Security Advisory CESA-2019:4024 An update for SDL is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

9.8CVSS6.8AI score0.03299EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2019/12/04 12:0 a.m.24 views

Scientific Linux Security Update : SDL on SL7.x x86_64 (20191202)

Security Fixes : - SDL: CVE-2019-13616 not fixed in Red Hat Enterprise Linux 7 erratum RHSA-2019:3950 CVE-2019-14906 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid131679; scriptversion"1.5";...

9.8CVSS6.5AI score0.03299EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2019/12/03 12:0 a.m.57 views

RHEL 7 : SDL (RHSA-2019:4024)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:4024 advisory. Simple DirectMedia Layer SDL is a cross-platform multimedia library designed to provide fast access to the graphics frame buffer and audio device...

9.8CVSS6.9AI score0.03299EPSS
Exploits1References5
Rows per page
Query Builder