Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libsdl simple directmedia layer vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-4743
A potential memory leak issue exists in SDL2 in GLES_CreateTexture() function in SDL_render_gles.c. The vulnerability allows an malicious user to cause a denial of service attack. The vulnerability affects SDL2 v2.0.4 and above. SDL-1.x are not affected.
Libsdl Simple Directmedia Layer
Redhat Enterprise Linux 9.0
NA
CVE-2022-34568
SDL v1.2 exists to contain a use-after-free via the XFree function at /src/video/x11/SDL_x11yuv.c.
Libsdl Simple Directmedia Layer
6.8
CVSSv2
CVE-2021-33657
There is a heap overflow problem in video/SDL_pixels.c in SDL (Simple DirectMedia Layer) 2.x to 2.0.18 versions. By crafting a malicious .BMP file, an attacker can cause the application using this library to crash, denial of service or Code execution.
Libsdl Simple Directmedia Layer
6.8
CVSSv2
CVE-2020-14409
SDL (Simple DirectMedia Layer) up to and including 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.
Libsdl Simple Directmedia Layer
Fedoraproject Fedora 33
Debian Debian Linux 9.0
Starwindsoftware Starwind Virtual San V8
5.8
CVSSv2
CVE-2020-14410
SDL (Simple DirectMedia Layer) up to and including 2.0.12 has a heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP file.
Libsdl Simple Directmedia Layer
Debian Debian Linux 9.0
Fedoraproject Fedora 33
7.5
CVSSv2
CVE-2019-14906
A flaw was found with the RHSA-2019:3950 erratum, where it did not fix the CVE-2019-13616 SDL vulnerability. This issue only affects Red Hat SDL packages, SDL versions up to and including 1.2.15 and 2.x up to and including 2.0.9 has a heap-based buffer overflow flaw while copying...
Libsdl Simple Directmedia Layer
Redhat Enterprise Linux 7.0
4.3
CVSSv2
CVE-2019-13626
SDL (Simple DirectMedia Layer) 2.x up to and including 2.0.9 has a heap-based buffer over-read in Fill_IMA_ADPCM_block, caused by an integer overflow in IMA_ADPCM_decode() in audio/SDL_wave.c.
Libsdl Libsdl
Fedoraproject Fedora 31
Debian Debian Linux 10.0
Opensuse Leap 15.0
Opensuse Leap 15.1
5.8
CVSSv2
CVE-2019-13616
SDL (Simple DirectMedia Layer) up to and including 1.2.15 and 2.x up to and including 2.0.9 has a heap-based buffer over-read in BlitNtoN in video/SDL_blit_N.c when called from SDL_SoftBlit in video/SDL_blit.c.
Libsdl Simple Directmedia Layer
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Opensuse Leap 15.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux Server Aus 7.7
Redhat Enterprise Linux Server Tus 7.7
Redhat Enterprise Linux Eus 7.7
Redhat Enterprise Linux Eus 8.1
4.3
CVSSv2
CVE-2019-12217
An issue exists in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 when used in conjunction with libSDL2_image.a in SDL2_image 2.0.4. There is a NULL pointer dereference in the SDL stdio_read function in file/SDL_rwops.c.
Libsdl Simple Directmedia Layer 2.0.9
Libsdl Sdl2 Image 2.0.4
4.3
CVSSv2
CVE-2019-12218
An issue exists in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 when used in conjunction with libSDL2_image.a in SDL2_image 2.0.4. There is a NULL pointer dereference in the SDL2_image function IMG_LoadPCX_RW at IMG_pcx.c.
Libsdl Simple Directmedia Layer 2.0.9
Libsdl Sdl2 Image 2.0.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
firmware
CVE-2006-4304
CVE-2024-32878
CVE-2024-31502
XSS
CVE-2024-3059
CVE-2024-33692
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »