VYPR

rpm package

opensuse/SDL3_image&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/SDL3_image&distro=openSUSE%20Tumbleweed

Vulnerabilities (1)

  • CVE-2026-35444HigApr 6, 2026
    affected < 3.4.2-1.1fixed 3.4.2-1.1

    SDL_image is a library to load images of various formats as SDL surfaces. In do_layer_surface() in src/IMG_xcf.c, pixel index values from decoded XCF tile data are used directly as colormap indices without validating them against the colormap size (cm_num). A crafted .xcf file wi