12 matches found
GLSA-202305-18 : libsdl2: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202305-18 libsdl2: Multiple Vulnerabilities - There is a heap overflow problem in video/SDLpixels.c in SDL Simple DirectMedia Layer 2.x to 2.0.18 versions. By crafting a malicious .BMP file, an attacker can cause the application...
GLSA-202305-17 : libsdl: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202305-17 libsdl: Multiple Vulnerabilities - SDL Simple DirectMedia Layer through 1.2.15 and 2.x through 2.0.9 has a buffer over-read in IMAADPCMnibble in audio/SDLwave.c. CVE-2019-7572 - SDL Simple DirectMedia Layer through 1.2.1...
Debian dla-3314 : libsdl2-2.0-0 - security update
The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3314 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3314-1 [email protected]...
Slackware: Security Advisory (SSA:2022-354-02)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Slackware Linux 14.2 / 15.0 / current sdl Vulnerability (SSA:2022-354-02)
The version of sdl installed on the remote host is prior to 1.2.15. It is, therefore, affected by a vulnerability as referenced in the SSA:2022-354-02 advisory. - There is a heap overflow problem in video/SDLpixels.c in SDL Simple DirectMedia Layer 2.x to 2.0.18 versions. By crafting a malicious...
openSUSE: Security Advisory for SDL (SUSE-SU-2022:1273-1)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE: Security Advisory (SUSE-SU-2022:1313-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES11 Security Update : SDL (SUSE-SU-2022:14943-1)
The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:14943-1 advisory. - SDL Simple DirectMedia Layer through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer overflow in SDLFillRect in video/SDLsurface.c...
SUSE-SU-2022:1313-1 Security update for SDL2
This update for SDL2 fixes the following issues: - CVE-2021-33657: Fixed a heap overflow problem in video/SDLpixels.c bsc1198001...
SUSE SLED15: libSDL2-2_0-0 / libSDL2-2_0-0-32bit / libSDL2-devel / etc (SUSE-SU-2022:1218-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:1218-1 advisory. - CVE-2021-33657: Fix a buffer overflow when parsing a crafted BMP image bsc1198001. Tenable has extracte...
CVE-2021-33657
There is a heap overflow problem in video/SDLpixels.c in SDL Simple DirectMedia Layer 2.x to 2.0.18 versions. By crafting a malicious .BMP file, an attacker can cause the application using this library to crash, denial of service or Code execution...
CVE-2021-33657
CVE-2021-33657 (SDL2) affects SDL2 up to version 2.0.18, with a heap overflow in video/SDL_pixels.c when processing a crafted BMP file. This can crash the application, cause denial of service, or lead to code execution. Exploitation is described via malformed BMP input; several advisories note pa...