USN-4156-1: SDL vulnerabilities

15 October 2019

Several security issues were fixed in SDL.

Releases

Packages

Details

It was discovered that SDL incorrectly handled certain images. If a user
were tricked into opening a crafted image file, a remote attacker could
use this issue to cause SDL to crash, resulting in a denial of service, or
possibly execute arbitrary code.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 18.04
Ubuntu 16.04

In general, a standard system update will make all the necessary changes.

Related notices

  • USN-4143-1: libsdl2-2.0-0, libsdl2-dev, libsdl2-doc, libsdl2
  • USN-4156-2: libsdl1.2, libsdl1.2debian, libsdl1.2-dev
  • USN-4238-1: libsdl-image1.2-dev, sdl-image1.2, libsdl-image1.2