Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

1 – 10 of 18 results


CVE-2022-34568

Low priority

Some fixes available 1 of 8

SDL v1.2 was discovered to contain a use-after-free via the XFree function at /src/video/x11/SDL_x11yuv.c.

2 affected packages

libsdl1.2, libsdl2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsdl1.2 Not in release Vulnerable Vulnerable Vulnerable Fixed
libsdl2 Not affected Not affected Not affected Not affected Needs evaluation
Show less packages

CVE-2021-33657

Medium priority

Some fixes available 4 of 13

There is a heap overflow problem in video/SDL_pixels.c in SDL (Simple DirectMedia Layer) 2.x to 2.0.18 versions. By crafting a malicious .BMP file, an attacker can cause the application using this library to crash, denial of...

2 affected packages

libsdl1.2, libsdl2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsdl1.2 Not in release Vulnerable Vulnerable Fixed Fixed
libsdl2 Not affected Not affected Vulnerable Vulnerable Vulnerable
Show less packages

CVE-2020-14410

Medium priority

Some fixes available 2 of 3

SDL (Simple DirectMedia Layer) through 2.0.12 has a heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP file.

2 affected packages

libsdl1.2, libsdl2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsdl1.2 Not in release Not affected Not affected Not affected Not affected
libsdl2 Not affected Not affected Fixed Fixed Not affected
Show less packages

CVE-2020-14409

Medium priority

Some fixes available 2 of 3

SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.

2 affected packages

libsdl1.2, libsdl2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsdl1.2 Not in release Not affected Not affected Not affected Not affected
libsdl2 Not affected Not affected Fixed Fixed Not affected
Show less packages

CVE-2019-13616

Low priority

Some fixes available 6 of 17

SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in BlitNtoN in video/SDL_blit_N.c when called from SDL_SoftBlit in video/SDL_blit.c.

4 affected packages

libsdl1.2, libsdl2, libsdl2-image, sdl-image1.2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsdl1.2 Not in release Not affected Not affected Fixed Fixed
libsdl2 Not affected Not affected Not affected Vulnerable Vulnerable
libsdl2-image Not affected Not affected Not affected Vulnerable Vulnerable
sdl-image1.2 Not affected Not affected Not affected Fixed Fixed
Show less packages

CVE-2019-13626

Medium priority
Vulnerable

SDL (Simple DirectMedia Layer) 2.x through 2.0.9 has a heap-based buffer over-read in Fill_IMA_ADPCM_block, caused by an integer overflow in IMA_ADPCM_decode() in audio/SDL_wave.c.

2 affected packages

libsdl1.2, libsdl2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsdl1.2 Not in release Not affected Not affected Not affected Not affected
libsdl2 Not affected Not affected Not affected Vulnerable Vulnerable
Show less packages

CVE-2019-7638

Medium priority

Some fixes available 7 of 10

SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in Map1toN in video/SDL_pixels.c.

2 affected packages

libsdl1.2, libsdl2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsdl1.2 Fixed Fixed
libsdl2 Fixed Fixed
Show less packages

CVE-2019-7637

Medium priority

Some fixes available 5 of 8

SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer overflow in SDL_FillRect in video/SDL_surface.c.

2 affected packages

libsdl1.2, libsdl2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsdl1.2 Fixed Fixed
libsdl2 Not affected Fixed
Show less packages

CVE-2019-7636

Medium priority

Some fixes available 7 of 10

SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in SDL_GetRGB in video/SDL_pixels.c.

2 affected packages

libsdl1.2, libsdl2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsdl1.2 Fixed Fixed
libsdl2 Fixed Fixed
Show less packages

CVE-2019-7635

Medium priority

Some fixes available 11 of 20

SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in Blit1to4 in video/SDL_blit_1.c.

4 affected packages

libsdl1.2, libsdl2, libsdl2-image, sdl-image1.2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsdl1.2 Not in release Not affected Not affected Fixed Fixed
libsdl2 Not affected Not affected Not affected Fixed Fixed
libsdl2-image Not affected Not affected Not affected Vulnerable Vulnerable
sdl-image1.2 Not affected Not affected Not affected Fixed Fixed
Show less packages