Lucene search
+L

641 matches found

nessus
nessus
added 2018/04/10 12:0 a.m.33 views

Debian DLA-1341-1 : sdl-image1.2 security update

Lilith of Cisco Talos discovered several buffer overflow vulnerabilities in the SDL Image library which can be leveraged by attackers to execute arbitrary code via specially crafted image files. For Debian 7 'Wheezy', these problems have been fixed in version 1.2.12-2+deb7u2. We recommend that yo...

8.8CVSS7.6AI score0.02677EPSS
Exploits0References8
openvas
openvas
added 2018/04/08 12:0 a.m.26 views

Debian: Security Advisory (DLA-1341-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8AI score0.02677EPSS
Exploits3References3
debian
debian
added 2018/04/06 10:29 p.m.98 views

[SECURITY] [DLA 1341-1] sdl-image1.2 security update

Package : sdl-image1.2 Version : 1.2.12-2+deb7u2 CVE ID : CVE-2017-12122 CVE-2017-14440 CVE-2017-14441 CVE-2017-14442 CVE-2017-14448 CVE-2017-14450 Lilith of Cisco Talos discovered several buffer overflow vulnerabilities in the SDL Image library which can be leveraged by attackers to execute...

8.8CVSS8.9AI score0.02677EPSS
Exploits0
osv
osv
added 2018/04/06 12:0 a.m.31 views

DLA-1341-1 sdl-image1.2 - security update

Bulletin has no description...

8.8CVSS7.1AI score0.02677EPSS
Exploits3
osv
osv
added 2018/03/19 12:13 p.m.6 views

MGASA-2018-0170 Updated SDL_image packages fix security vulnerability

An exploitable buffer overflow vulnerability exists in the XCF property handling functionality of SDLimage 2.0.1. A specially crafted xcf file can cause a stack-based buffer overflow resulting in potential code execution. An attacker can provide a specially crafted XCF file to trigger this...

8.8CVSS8.8AI score0.02656EPSS
Exploits1References3
ptsecurity
ptsecurity
added 2018/03/18 12:0 a.m.3 views

PT-2018-5642 · Sdl +2 · Sdl2 Image +2

Name of the Vulnerable Software and Affected Versions: SDL2 image version 2.0.2 Description: A code execution issue exists in the ICO image rendering functionality. A specially crafted ICO image can cause an integer overflow, leading to a heap overflow and resulting in code execution. This can be...

8.8CVSS7.4AI score0.02677EPSS
Exploits4References70
ptsecurity
ptsecurity
added 2018/03/18 12:0 a.m.2 views

PT-2018-1906 · Sdl +2 · Sdl-Image +3

Name of the Vulnerable Software and Affected Versions: sdl-image versions prior to the fixed version SDL2 image version 2.0.2 Description: The issue is related to memory handling errors in the image loading library, which can lead to denial of service or execution of arbitrary code. Exploitation ...

8.8CVSS7.4AI score0.02677EPSS
Exploits4References79
openvas
openvas
added 2018/02/06 12:0 a.m.31 views

Debian: Security Advisory (DLA-1134-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.02656EPSS
Exploits1References2
prion
prion
added 2017/12/14 4:29 p.m.9 views

Design/Logic Flaw

backends/platform/sdl/posix/posix.cpp in ScummVM 1.9.0 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL...

6.8CVSS8.3AI score0.01643EPSS
Exploits0References1Affected Software1
seebug
seebug
added 2017/11/06 12:0 a.m.57 views

Simple DirectMedia Layer Create RGB Surface Code Execution Vulnerability(CVE-2017-2888)

Summary An exploitable integer overflow vulnerability exists when creating a new RGB Surface in SDL 2.0.5. A specially crafted file can cause an integer overflow resulting in too little memory being allocated which can lead to a buffer overflow and potential code execution. An attacker can provid...

6.8CVSS9.1AI score0.03072EPSS
Exploits2
fedora
fedora
added 2017/10/26 12:8 p.m.32 views

[SECURITY] Fedora 25 Update: SDL2-2.0.5-8.fc25

Simple DirectMedia Layer SDL is a cross-platform multimedia library desig ned to provide fast access to the graphics frame buffer and audio device...

8.8CVSS3.6AI score0.03072EPSS
Exploits2
redhatcve
redhatcve
added 2017/10/19 11:59 a.m.28 views

CVE-2017-2888

An exploitable integer overflow vulnerability exists when creating a new RGB Surface in SDL 2.0.5. A specially crafted file can cause an integer overflow resulting in too little memory being allocated which can lead to a buffer overflow and potential code execution. An attacker can provide a...

8.8CVSS4.8AI score0.03072EPSS
Exploits2References2
nessus
nessus
added 2017/10/17 12:0 a.m.29 views

Debian DLA-1134-1 : sdl-image1.2 security update

It was discovered that there was a buffer overflow vulnerability in sdl-image1.2, an image loading library. A specially crafted .xcf file could cause a stack-based buffer overflow resulting in potential code execution. For Debian 7 'Wheezy', this issue has been fixed in sdl-image1.2 version...

8.8CVSS7.9AI score0.02656EPSS
Exploits1References3
debian
debian
added 2017/10/16 10:2 p.m.40 views

[SECURITY] [DLA 1134-1] sdl-image1.2 security update

Package : sdl-image1.2 Version : 1.2.12-2+deb7u1 CVE ID : CVE-2017-2887 Debian Bug : 878267 It was discovered that there was a buffer overflow vulnerability in sdl-image1.2, an image loading library. A specially crafted .xcf file could cause a stack-based buffer overflow resulting in potential co...

8.8CVSS9AI score0.02656EPSS
Exploits1
cnvd
cnvd
added 2017/10/16 12:0 a.m.49 views

SDL_image Buffer Overflow Vulnerability

SDLImage is an open source library of functions for working with graphics files. A buffer overflow vulnerability exists in the XCF attribute handling function in SDLimage version 2.0.1. An attacker can exploit this vulnerability to execute code with the help of a specially crafted xcf file...

8.8CVSS8.9AI score0.02656EPSS
Exploits1References1
osv
osv
added 2017/10/16 12:0 a.m.25 views

DLA-1134-1 sdl-image1.2 - security update

Bulletin has no description...

8.8CVSS8.6AI score0.02656EPSS
Exploits1
nvd
nvd
added 2017/10/11 6:29 p.m.15 views

CVE-2017-2888

An exploitable integer overflow vulnerability exists when creating a new RGB Surface in SDL 2.0.5. A specially crafted file can cause an integer overflow resulting in too little memory being allocated which can lead to a buffer overflow and potential code execution. An attacker can provide a...

8.8CVSS8.9AI score0.03072EPSS
Exploits2References4
osv
osv
added 2017/10/11 6:29 p.m.19 views

CVE-2017-2888

An exploitable integer overflow vulnerability exists when creating a new RGB Surface in SDL 2.0.5. A specially crafted file can cause an integer overflow resulting in too little memory being allocated which can lead to a buffer overflow and potential code execution. An attacker can provide a...

8.8CVSS8.9AI score
Exploits0References4
osv
osv
added 2017/10/11 6:29 p.m.4 views

DEBIAN-CVE-2017-2888

An exploitable integer overflow vulnerability exists when creating a new RGB Surface in SDL 2.0.5. A specially crafted file can cause an integer overflow resulting in too little memory being allocated which can lead to a buffer overflow and potential code execution. An attacker can provide a...

8.8CVSS8.1AI score0.03072EPSS
Exploits2References1
osv
osv
added 2017/10/11 6:29 p.m.7 views

ALPINE-CVE-2017-2887

An exploitable buffer overflow vulnerability exists in the XCF property handling functionality of SDLimage 2.0.1. A specially crafted xcf file can cause a stack-based buffer overflow resulting in potential code execution. An attacker can provide a specially crafted XCF file to trigger this...

8.8CVSS8AI score0.02656EPSS
Exploits1References1
Rows per page
Query Builder