Unrated severityNVD Advisory· Published Jul 3, 2019· Updated Aug 4, 2024
CVE-2019-5051
CVE-2019-5051
Description
An exploitable heap-based buffer overflow vulnerability exists when loading a PCX file in SDL2_image, version 2.0.4. A missing error handler can lead to a buffer overflow and potential code execution. An attacker can provide a specially crafted image file to trigger this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5- SDL/SDL2_imagedescription
- osv-coords4 versionspkg:rpm/opensuse/SDL2_image&distro=openSUSE%20Leap%2015.0pkg:rpm/opensuse/SDL2_image&distro=openSUSE%20Leap%2015.1pkg:rpm/suse/SDL2_image&distro=SUSE%20Package%20Hub%2015pkg:rpm/suse/SDL2_image&distro=SUSE%20Package%20Hub%2015%20SP1
< 2.0.5-lp151.2.5.1+ 3 more
- (no CPE)range: < 2.0.5-lp151.2.5.1
- (no CPE)range: < 2.0.5-lp151.2.5.1
- (no CPE)range: < 2.0.5-bp151.4.3.1
- (no CPE)range: < 2.0.5-bp151.4.3.1
Patches
Vulnerability mechanics
References
5- lists.opensuse.org/opensuse-security-announce/2019-09/msg00012.htmlmitrevendor-advisoryx_refsource_SUSE
- lists.opensuse.org/opensuse-security-announce/2019-09/msg00029.htmlmitrevendor-advisoryx_refsource_SUSE
- usn.ubuntu.com/4238-1/mitrevendor-advisoryx_refsource_UBUNTU
- lists.debian.org/debian-lts-announce/2019/07/msg00026.htmlmitremailing-listx_refsource_MLIST
- talosintelligence.com/vulnerability_reports/TALOS-2019-0820mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.