Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libsdl libsdl vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-4743
A potential memory leak issue exists in SDL2 in GLES_CreateTexture() function in SDL_render_gles.c. The vulnerability allows an malicious user to cause a denial of service attack. The vulnerability affects SDL2 v2.0.4 and above. SDL-1.x are not affected.
Libsdl Simple Directmedia Layer
Redhat Enterprise Linux 9.0
7.5
CVSSv3
CVE-2022-34568
SDL v1.2 exists to contain a use-after-free via the XFree function at /src/video/x11/SDL_x11yuv.c.
Libsdl Simple Directmedia Layer
7.8
CVSSv3
CVE-2022-27470
SDL_ttf v2.0.18 and below exists to contain an arbitrary memory write via the function TTF_RenderText_Solid(). This vulnerability is triggered via a crafted TTF file.
Libsdl Sdl Ttf
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
8.8
CVSSv3
CVE-2021-33657
There is a heap overflow problem in video/SDL_pixels.c in SDL (Simple DirectMedia Layer) 2.x to 2.0.18 versions. By crafting a malicious .BMP file, an attacker can cause the application using this library to crash, denial of service or Code execution.
Libsdl Simple Directmedia Layer
5.4
CVSSv3
CVE-2020-14410
SDL (Simple DirectMedia Layer) up to and including 2.0.12 has a heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP file.
Libsdl Simple Directmedia Layer
Debian Debian Linux 9.0
Fedoraproject Fedora 33
7.8
CVSSv3
CVE-2020-14409
SDL (Simple DirectMedia Layer) up to and including 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.
Libsdl Simple Directmedia Layer
Fedoraproject Fedora 33
Debian Debian Linux 9.0
Starwindsoftware Starwind Virtual San V8
9.8
CVSSv3
CVE-2019-14906
A flaw was found with the RHSA-2019:3950 erratum, where it did not fix the CVE-2019-13616 SDL vulnerability. This issue only affects Red Hat SDL packages, SDL versions up to and including 1.2.15 and 2.x up to and including 2.0.9 has a heap-based buffer overflow flaw while copying...
Libsdl Simple Directmedia Layer
Redhat Enterprise Linux 7.0
8.8
CVSSv3
CVE-2019-5057
An exploitable code execution vulnerability exists in the PCX image-rendering functionality of SDL2_image 2.0.4. A specially crafted PCX image can cause a heap overflow, resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability.
Libsdl Sdl2 Image 2.0.4
Opensuse Leap 15.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
8.8
CVSSv3
CVE-2019-5058
An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2_image 2.0.4. A specially crafted XCF image can cause a heap overflow, resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability.
Libsdl Sdl2 Image 2.0.4
Opensuse Leap 15.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
8.8
CVSSv3
CVE-2019-5059
An exploitable code execution vulnerability exists in the XPM image rendering functionality of SDL2_image 2.0.4. A specially crafted XPM image can cause an integer overflow, allocating too small of a buffer. This buffer can then be written out of bounds resulting in a heap overfl...
Libsdl Sdl2 Image 2.0.4
Opensuse Leap 15.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »