Sdl

Source repositories

https://github.com/libsdl-org/sdl

CVEs (13)

CVE	Vendor / Product	Risk	CVSS	EPSS	Published	Description
CVE-2019-7636	Libsdl Org Sdl	0.01	—	0.10	Feb 8, 2019	SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in SDL_GetRGB in video/SDL_pixels.c.
CVE-2019-7573	Libsdl Org Sdl	0.01	—	0.07	Feb 7, 2019	SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c (inside the wNumCoef loop).
CVE-2019-7578	Libsdl Org Sdl	0.01	—	0.10	Feb 7, 2019	SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitIMA_ADPCM in audio/SDL_wave.c.
CVE-2019-7572	Libsdl Org Sdl	0.01	—	0.07	Feb 7, 2019	SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a buffer over-read in IMA_ADPCM_nibble in audio/SDL_wave.c.
CVE-2019-7576	Libsdl Org Sdl	0.01	—	0.09	Feb 7, 2019	SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c (outside the wNumCoef loop).
CVE-2019-7577	Libsdl Org Sdl	0.01	—	0.07	Feb 7, 2019	SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a buffer over-read in SDL_LoadWAV_RW in audio/SDL_wave.c.
CVE-2022-4743	Libsdl Org Sdl	0.00	—	0.00	Jan 12, 2023	A potential memory leak issue was discovered in SDL2 in GLES_CreateTexture() function in SDL_render_gles.c. The vulnerability allows an attacker to cause a denial of service attack. The vulnerability affects SDL2 v2.0.4 and above. SDL-1.x are not affected.
CVE-2021-33657	Libsdl Org Sdl	0.00	—	0.00	Apr 1, 2022	There is a heap overflow problem in video/SDL_pixels.c in SDL (Simple DirectMedia Layer) 2.x to 2.0.18 versions. By crafting a malicious .BMP file, an attacker can cause the application using this library to crash, denial of service or Code execution.
CVE-2019-7637	Libsdl Org Sdl	0.00	—	0.04	Feb 8, 2019	SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer overflow in SDL_FillRect in video/SDL_surface.c.
CVE-2019-7635	Libsdl Org Sdl	0.00	—	0.06	Feb 8, 2019	SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in Blit1to4 in video/SDL_blit_1.c.
CVE-2019-7638	Libsdl Org Sdl	0.00	—	0.06	Feb 8, 2019	SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in Map1toN in video/SDL_pixels.c.
CVE-2019-7575	Libsdl Org Sdl	0.00	—	0.02	Feb 7, 2019	SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer overflow in MS_ADPCM_decode in audio/SDL_wave.c.
CVE-2019-7574	Libsdl Org Sdl	0.00	—	0.04	Feb 7, 2019	SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in IMA_ADPCM_decode in audio/SDL_wave.c.

CVE-2019-7636Feb 8, 2019
Libsdl Org
Sdl
risk 0.01cvss —epss 0.10
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in SDL_GetRGB in video/SDL_pixels.c.
CVE-2019-7573Feb 7, 2019
Libsdl Org
Sdl
risk 0.01cvss —epss 0.07
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c (inside the wNumCoef loop).
CVE-2019-7578Feb 7, 2019
Libsdl Org
Sdl
risk 0.01cvss —epss 0.10
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitIMA_ADPCM in audio/SDL_wave.c.
CVE-2019-7572Feb 7, 2019
Libsdl Org
Sdl
risk 0.01cvss —epss 0.07
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a buffer over-read in IMA_ADPCM_nibble in audio/SDL_wave.c.
CVE-2019-7576Feb 7, 2019
Libsdl Org
Sdl
risk 0.01cvss —epss 0.09
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c (outside the wNumCoef loop).
CVE-2019-7577Feb 7, 2019
Libsdl Org
Sdl
risk 0.01cvss —epss 0.07
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a buffer over-read in SDL_LoadWAV_RW in audio/SDL_wave.c.
CVE-2022-4743Jan 12, 2023
Libsdl Org
Sdl
risk 0.00cvss —epss 0.00
A potential memory leak issue was discovered in SDL2 in GLES_CreateTexture() function in SDL_render_gles.c. The vulnerability allows an attacker to cause a denial of service attack. The vulnerability affects SDL2 v2.0.4 and above. SDL-1.x are not affected.
CVE-2021-33657Apr 1, 2022
Libsdl Org
Sdl
risk 0.00cvss —epss 0.00
There is a heap overflow problem in video/SDL_pixels.c in SDL (Simple DirectMedia Layer) 2.x to 2.0.18 versions. By crafting a malicious .BMP file, an attacker can cause the application using this library to crash, denial of service or Code execution.
CVE-2019-7637Feb 8, 2019
Libsdl Org
Sdl
risk 0.00cvss —epss 0.04
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer overflow in SDL_FillRect in video/SDL_surface.c.
CVE-2019-7635Feb 8, 2019
Libsdl Org
Sdl
risk 0.00cvss —epss 0.06
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in Blit1to4 in video/SDL_blit_1.c.
CVE-2019-7638Feb 8, 2019
Libsdl Org
Sdl
risk 0.00cvss —epss 0.06
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in Map1toN in video/SDL_pixels.c.
CVE-2019-7575Feb 7, 2019
Libsdl Org
Sdl
risk 0.00cvss —epss 0.02
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer overflow in MS_ADPCM_decode in audio/SDL_wave.c.
CVE-2019-7574Feb 7, 2019
Libsdl Org
Sdl
risk 0.00cvss —epss 0.04
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in IMA_ADPCM_decode in audio/SDL_wave.c.