641 matches found
Debian DLA-1341-1 : sdl-image1.2 security update
Lilith of Cisco Talos discovered several buffer overflow vulnerabilities in the SDL Image library which can be leveraged by attackers to execute arbitrary code via specially crafted image files. For Debian 7 'Wheezy', these problems have been fixed in version 1.2.12-2+deb7u2. We recommend that yo...
Debian: Security Advisory (DLA-1341-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 1341-1] sdl-image1.2 security update
Package : sdl-image1.2 Version : 1.2.12-2+deb7u2 CVE ID : CVE-2017-12122 CVE-2017-14440 CVE-2017-14441 CVE-2017-14442 CVE-2017-14448 CVE-2017-14450 Lilith of Cisco Talos discovered several buffer overflow vulnerabilities in the SDL Image library which can be leveraged by attackers to execute...
DLA-1341-1 sdl-image1.2 - security update
Bulletin has no description...
MGASA-2018-0170 Updated SDL_image packages fix security vulnerability
An exploitable buffer overflow vulnerability exists in the XCF property handling functionality of SDLimage 2.0.1. A specially crafted xcf file can cause a stack-based buffer overflow resulting in potential code execution. An attacker can provide a specially crafted XCF file to trigger this...
PT-2018-5642 · Sdl +2 · Sdl2 Image +2
Name of the Vulnerable Software and Affected Versions: SDL2 image version 2.0.2 Description: A code execution issue exists in the ICO image rendering functionality. A specially crafted ICO image can cause an integer overflow, leading to a heap overflow and resulting in code execution. This can be...
PT-2018-1906 · Sdl +2 · Sdl-Image +3
Name of the Vulnerable Software and Affected Versions: sdl-image versions prior to the fixed version SDL2 image version 2.0.2 Description: The issue is related to memory handling errors in the image loading library, which can lead to denial of service or execution of arbitrary code. Exploitation ...
Debian: Security Advisory (DLA-1134-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Design/Logic Flaw
backends/platform/sdl/posix/posix.cpp in ScummVM 1.9.0 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL...
Simple DirectMedia Layer Create RGB Surface Code Execution Vulnerability(CVE-2017-2888)
Summary An exploitable integer overflow vulnerability exists when creating a new RGB Surface in SDL 2.0.5. A specially crafted file can cause an integer overflow resulting in too little memory being allocated which can lead to a buffer overflow and potential code execution. An attacker can provid...
[SECURITY] Fedora 25 Update: SDL2-2.0.5-8.fc25
Simple DirectMedia Layer SDL is a cross-platform multimedia library desig ned to provide fast access to the graphics frame buffer and audio device...
CVE-2017-2888
An exploitable integer overflow vulnerability exists when creating a new RGB Surface in SDL 2.0.5. A specially crafted file can cause an integer overflow resulting in too little memory being allocated which can lead to a buffer overflow and potential code execution. An attacker can provide a...
Debian DLA-1134-1 : sdl-image1.2 security update
It was discovered that there was a buffer overflow vulnerability in sdl-image1.2, an image loading library. A specially crafted .xcf file could cause a stack-based buffer overflow resulting in potential code execution. For Debian 7 'Wheezy', this issue has been fixed in sdl-image1.2 version...
[SECURITY] [DLA 1134-1] sdl-image1.2 security update
Package : sdl-image1.2 Version : 1.2.12-2+deb7u1 CVE ID : CVE-2017-2887 Debian Bug : 878267 It was discovered that there was a buffer overflow vulnerability in sdl-image1.2, an image loading library. A specially crafted .xcf file could cause a stack-based buffer overflow resulting in potential co...
SDL_image Buffer Overflow Vulnerability
SDLImage is an open source library of functions for working with graphics files. A buffer overflow vulnerability exists in the XCF attribute handling function in SDLimage version 2.0.1. An attacker can exploit this vulnerability to execute code with the help of a specially crafted xcf file...
DLA-1134-1 sdl-image1.2 - security update
Bulletin has no description...
CVE-2017-2888
An exploitable integer overflow vulnerability exists when creating a new RGB Surface in SDL 2.0.5. A specially crafted file can cause an integer overflow resulting in too little memory being allocated which can lead to a buffer overflow and potential code execution. An attacker can provide a...
CVE-2017-2888
An exploitable integer overflow vulnerability exists when creating a new RGB Surface in SDL 2.0.5. A specially crafted file can cause an integer overflow resulting in too little memory being allocated which can lead to a buffer overflow and potential code execution. An attacker can provide a...
DEBIAN-CVE-2017-2888
An exploitable integer overflow vulnerability exists when creating a new RGB Surface in SDL 2.0.5. A specially crafted file can cause an integer overflow resulting in too little memory being allocated which can lead to a buffer overflow and potential code execution. An attacker can provide a...
ALPINE-CVE-2017-2887
An exploitable buffer overflow vulnerability exists in the XCF property handling functionality of SDLimage 2.0.1. A specially crafted xcf file can cause a stack-based buffer overflow resulting in potential code execution. An attacker can provide a specially crafted XCF file to trigger this...