Search CVE reports


Toggle filters

21 – 30 of 45 results


CVE-2019-5057

Medium priority

Some fixes available 12 of 16

An exploitable code execution vulnerability exists in the PCX image-rendering functionality of SDL2_image 2.0.4. A specially crafted PCX image can cause a heap overflow, resulting in code execution. An attacker can display a...

1 affected package

libsdl2-image

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libsdl2-image Fixed Fixed Fixed Vulnerable
Show less packages

CVE-2019-5052

Medium priority

Some fixes available 4 of 10

An exploitable integer overflow vulnerability exists when loading a PCX file in SDL2_image 2.0.4. A specially crafted file can cause an integer overflow, resulting in too little memory being allocated, which can lead to a buffer...

2 affected packages

libsdl2-image, sdl-image1.2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libsdl2-image Not affected Not affected Not affected Vulnerable
sdl-image1.2 Not affected Not affected Not affected Fixed
Show less packages

CVE-2019-5051

Medium priority

Some fixes available 4 of 10

An exploitable heap-based buffer overflow vulnerability exists when loading a PCX file in SDL2_image, version 2.0.4. A missing error handler can lead to a buffer overflow and potential code execution. An attacker can provide a...

2 affected packages

libsdl2-image, sdl-image1.2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libsdl2-image Not affected Not affected Not affected Vulnerable
sdl-image1.2 Not affected Not affected Not affected Fixed
Show less packages

CVE-2019-13626

Medium priority
Vulnerable

SDL (Simple DirectMedia Layer) 2.x through 2.0.9 has a heap-based buffer over-read in Fill_IMA_ADPCM_block, caused by an integer overflow in IMA_ADPCM_decode() in audio/SDL_wave.c.

2 affected packages

libsdl2, libsdl1.2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libsdl2 Not affected Not affected Not affected Vulnerable
libsdl1.2 Not in release Not affected Not affected Not affected
Show less packages

CVE-2019-13616

Low priority

Some fixes available 6 of 17

SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in BlitNtoN in video/SDL_blit_N.c when called from SDL_SoftBlit in video/SDL_blit.c.

4 affected packages

libsdl2, libsdl1.2, libsdl2-image, sdl-image1.2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libsdl2 Not affected Not affected Not affected Vulnerable
libsdl1.2 Not in release Not affected Not affected Fixed
libsdl2-image Not affected Not affected Not affected Vulnerable
sdl-image1.2 Not affected Not affected Not affected Fixed
Show less packages

CVE-2019-12222

Low priority

Some fixes available 4 of 8

An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9. There is an out-of-bounds read in the function SDL_InvalidateMap at video/SDL_pixels.c.

2 affected packages

libsdl2-image, sdl-image1.2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libsdl2-image Not affected Not affected Not affected Vulnerable
sdl-image1.2 Not affected Not affected Not affected Fixed
Show less packages

CVE-2019-12221

Low priority

Some fixes available 4 of 8

An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 when used in conjunction with libSDL2_image.a in SDL2_image 2.0.4. There is a SEGV in the SDL function SDL_free_REAL at stdlib/SDL_malloc.c.

2 affected packages

libsdl2-image, sdl-image1.2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libsdl2-image Not affected Not affected Not affected Vulnerable
sdl-image1.2 Not affected Not affected Not affected Fixed
Show less packages

CVE-2019-12220

Low priority

Some fixes available 4 of 8

An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 when used in conjunction with libSDL2_image.a in SDL2_image 2.0.4. There is an out-of-bounds read in the SDL function SDL_FreePalette_REAL at video/SDL_pixels.c.

2 affected packages

libsdl2-image, sdl-image1.2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libsdl2-image Not affected Not affected Not affected Vulnerable
sdl-image1.2 Not affected Not affected Not affected Fixed
Show less packages

CVE-2019-12219

Low priority

Some fixes available 4 of 8

An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 when used in conjunction with libSDL2_image.a in SDL2_image 2.0.4. There is an invalid free error in the SDL function SDL_SetError_REAL at SDL_error.c.

2 affected packages

libsdl2-image, sdl-image1.2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libsdl2-image Not affected Not affected Not affected Vulnerable
sdl-image1.2 Not affected Not affected Not affected Fixed
Show less packages

CVE-2019-12218

Medium priority

Some fixes available 4 of 10

An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 when used in conjunction with libSDL2_image.a in SDL2_image 2.0.4. There is a NULL pointer dereference in the SDL2_image function IMG_LoadPCX_RW at IMG_pcx.c.

2 affected packages

libsdl2-image, sdl-image1.2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
libsdl2-image Not affected Not affected Not affected Vulnerable
sdl-image1.2 Not affected Not affected Not affected Fixed
Show less packages