Search CVE reports


Toggle filters

1 – 10 of 27 results


CVE-2019-13616

Low priority

Some fixes available 6 of 17

SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in BlitNtoN in video/SDL_blit_N.c when called from SDL_SoftBlit in video/SDL_blit.c.

4 affected packages

libsdl1.2, libsdl2, libsdl2-image, sdl-image1.2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsdl1.2 Not in release Not affected Not affected Fixed Fixed
libsdl2 Not affected Not affected Not affected Vulnerable Vulnerable
libsdl2-image Not affected Not affected Not affected Vulnerable Vulnerable
sdl-image1.2 Not affected Not affected Not affected Fixed Fixed
Show less packages

CVE-2019-5060

Medium priority

Some fixes available 11 of 15

An exploitable code execution vulnerability exists in the XPM image rendering function of SDL2_image 2.0.4. A specially crafted XPM image can cause an integer overflow in the colorhash function, allocating too small of a buffer....

1 affected package

libsdl2-image

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsdl2-image Fixed Fixed Fixed Vulnerable Vulnerable
Show less packages

CVE-2019-5059

Medium priority

Some fixes available 11 of 15

An exploitable code execution vulnerability exists in the XPM image rendering functionality of SDL2_image 2.0.4. A specially crafted XPM image can cause an integer overflow, allocating too small of a buffer. This buffer can then...

1 affected package

libsdl2-image

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsdl2-image Fixed Fixed Fixed Vulnerable Vulnerable
Show less packages

CVE-2019-5058

Medium priority

Some fixes available 11 of 15

An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2_image 2.0.4. A specially crafted XCF image can cause a heap overflow, resulting in code execution. An attacker can display a...

1 affected package

libsdl2-image

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsdl2-image Fixed Fixed Fixed Vulnerable Vulnerable
Show less packages

CVE-2019-5057

Medium priority

Some fixes available 11 of 15

An exploitable code execution vulnerability exists in the PCX image-rendering functionality of SDL2_image 2.0.4. A specially crafted PCX image can cause a heap overflow, resulting in code execution. An attacker can display a...

1 affected package

libsdl2-image

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsdl2-image Fixed Fixed Fixed Vulnerable Vulnerable
Show less packages

CVE-2019-5052

Medium priority

Some fixes available 4 of 10

An exploitable integer overflow vulnerability exists when loading a PCX file in SDL2_image 2.0.4. A specially crafted file can cause an integer overflow, resulting in too little memory being allocated, which can lead to a buffer...

2 affected packages

libsdl2-image, sdl-image1.2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsdl2-image Not affected Not affected Not affected Vulnerable Vulnerable
sdl-image1.2 Not affected Not affected Not affected Fixed Fixed
Show less packages

CVE-2019-5051

Medium priority

Some fixes available 4 of 10

An exploitable heap-based buffer overflow vulnerability exists when loading a PCX file in SDL2_image, version 2.0.4. A missing error handler can lead to a buffer overflow and potential code execution. An attacker can provide a...

2 affected packages

libsdl2-image, sdl-image1.2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsdl2-image Not affected Not affected Not affected Vulnerable Vulnerable
sdl-image1.2 Not affected Not affected Not affected Fixed Fixed
Show less packages

CVE-2019-12222

Low priority

Some fixes available 4 of 8

An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9. There is an out-of-bounds read in the function SDL_InvalidateMap at video/SDL_pixels.c.

2 affected packages

libsdl2-image, sdl-image1.2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsdl2-image Not affected Not affected Not affected Vulnerable Vulnerable
sdl-image1.2 Not affected Not affected Not affected Fixed Fixed
Show less packages

CVE-2019-12221

Low priority

Some fixes available 4 of 8

An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 when used in conjunction with libSDL2_image.a in SDL2_image 2.0.4. There is a SEGV in the SDL function SDL_free_REAL at stdlib/SDL_malloc.c.

2 affected packages

libsdl2-image, sdl-image1.2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsdl2-image Not affected Not affected Not affected Vulnerable Vulnerable
sdl-image1.2 Not affected Not affected Not affected Fixed Fixed
Show less packages

CVE-2019-12220

Low priority

Some fixes available 4 of 8

An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 when used in conjunction with libSDL2_image.a in SDL2_image 2.0.4. There is an out-of-bounds read in the SDL function SDL_FreePalette_REAL at video/SDL_pixels.c.

2 affected packages

libsdl2-image, sdl-image1.2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
libsdl2-image Not affected Not affected Not affected Vulnerable Vulnerable
sdl-image1.2 Not affected Not affected Not affected Fixed Fixed
Show less packages