19 matches found
Astra Linux - уязвимость в libsdl1.2, libsdl2
In SDL Simple DirectMediaLayer, from versions 1.2.15 onward, as well as in versions 2.x through 2.0.9, there is a heap-based buffer over-read issue in the InitIMAADPCM module of the audio/SDLwave.c file...
OPENSUSE-SU-2024:10610-1 libSDL_sound-1_0-1-1.0.3-94.20 on GA media
These are all security issues fixed in the libSDLsound-10-1-1.0.3-94.20 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:10606-1 libSDL-1_2-0-1.2.15-22.13 on GA media
These are all security issues fixed in the libSDL-12-0-1.2.15-22.13 package on the GA media of openSUSE Tumbleweed...
GLSA-202305-17 : libsdl: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202305-17 libsdl: Multiple Vulnerabilities - SDL Simple DirectMedia Layer through 1.2.15 and 2.x through 2.0.9 has a buffer over-read in IMAADPCMnibble in audio/SDLwave.c. CVE-2019-7572 - SDL Simple DirectMedia Layer through 1.2.1...
SDL_image XPM image colorhash parsing Code Execution Vulnerability
Summary An exploitable code execution vulnerability exists in the XPM image rendering function of SDL2image 2.0.4. A specially crafted XPM image can cause an integer overflow in the colorhash function, allocating too small of a buffer. This buffer can then be written out of bounds, resulting in a...
SDL_image XCF Image Code Execution Vulnerability
Summary An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2image 2.0.4. A specially crafted XCF image can cause a heap overflow, resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability. Tested...
SDL_image PCX Image Code execution Vulnerability
Summary An exploitable code execution vulnerability exists in the PCX image-rendering functionality of SDL2image 2.0.4. A specially crafted PCX image can cause a heap overflow, resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability. Tested...
CVE-2019-12216
CVE-2019-12216 affects the SDL ecosystem when using libSDL2.a (SDL 2.0.9) with libSDL2_image.a (SDL2_image 2.0.4). The issue is a heap-based buffer overflow in the SDL2_image function IMG_LoadPCX_RW (at IMG_pcx.c). The connected documents list this CVE among SDL_image-related advisories, but do n...
Remote Code Execution (RCE)
libSDL-1.2.so is vulnerable to remote code execution RCE. A malicious user can pass an ILBM image to the application to cause a heap overflow, crashing the application or causing arbitrary code to be executed...
Remote Code Execution (RCE)
libSDL-1.2.so is vulnerable to remote code execution. The library does not properly check the BytePerPixel variable, allowing a malicious user to pass a crafted ico image to cause an integer overflow that can cause arbitrary code to be executed...
Simple DirectMedia Layer SDL2_Image load_xcf_tile_rle bpp Code Execution Vulnerability
Summary An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2image-2.0.2. A specially crafted XCF image can cause an out-of-bounds write on the heap, resulting in code execution. An attacker can display a specially crafted image to trigger this...
Simple DirectMedia Layer SDL2_Image load_xcf_tile_rle Information Disclosure Vulnerability
Summary An exploitable information vulnerability exists in the XCF image rendering functionality of SDL2image-2.0.2. A specially crafted XCF image can cause an out-of-bounds read on the heap, resulting in information disclosure. An attacker can display a specially crafted image to trigger this...
Simple DirectMedia Layer SDL2_Image LWZ Decompression Buffer Overflow Vulnerability
Summary A buffer overflow vulnerability exists in the GIF image parsing functionality of SDL2image-2.0.2. A specially crafted GIF image can lead to a buffer overflow on a global section. An attacker can display an image to trigger this vulnerability. Tested Versions Simple DirectMedia Layer...
Simple DirectMedia Layer SDL2_image ILBM CMAP Parsing Code Execution Vulnerability
Summary An exploitable code execution vulnerability exists in the ILBM image rendering functionality of SDL2image-2.0.2. A specially crafted ILBM image can cause a stack overflow resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability. Tested...
Simple DirectMedia Layer SDL2_image ICO Pitch Handling Code Execution Vulnerability
Summary An exploitable code execution vulnerability exists in the ICO image rendering functionality of SDL2image-2.0.2. A specially crafted ICO image can cause an integer overflow, cascading to a heap overflow resulting in code execution. An attacker can display a specially crafted image to trigg...
Simple DirectMedia Layer SDL2_image do_layer_surface Double-Free Vulnerability
Summary A double-Free vulnerability exists in the XCF image rendering functionality of SDL2image-2.0.2. A specially crafted XCF image can cause a Double-Free situation to occur. An attacker can display a specially crafted image to trigger this vulnerability. Tested Versions Simple DirectMedia Lay...
MDVA-2010:149 : SDL12
Updated libSDL packages are being provided for Mandriva Linux 2010.0 which fixes random crackling occurring when playing sound in SDL-based applications via PulseAudio. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabl...
Mandriva Update for SDL12 MDVA-2010:149 (SDL12)
Check for the Version of SDL12 OpenVAS Vulnerability Test Mandriva Update for SDL12 MDVA-2010:149 SDL12 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Mandriva Update for SDL12 MDVA-2010:149 (SDL12)
Check for the Version of SDL12 OpenVAS Vulnerability Test Mandriva Update for SDL12 MDVA-2010:149 SDL12 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...