CVE-2019-12216 — Out-of-bounds Write in Sdl2 Image
Severity
6.5MEDIUMNVD
EPSS
1.1%
top 21.86%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedMay 20
Latest updateMay 24
Description
An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 when used in conjunction with libSDL2_image.a in SDL2_image 2.0.4. There is a heap-based buffer overflow in the SDL2_image function IMG_LoadPCX_RW at IMG_pcx.c.
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6
Affected Packages2 packages
Also affects: Debian Linux 8.0, Fedora 29, 31, Ubuntu Linux 16.04, 18.04
🔴Vulnerability Details
3📋Vendor Advisories
3💬Community
6Bugzilla▶
CVE-2019-12216 mingw-SDL2: SDL: heap-based buffer overflow in function SDL2_image function IMG_LoadPCX_RW in IMG_pcx.c [epel-7]↗2019-09-16
Bugzilla▶
CVE-2019-12216 SDL2: SDL: heap-based buffer overflow in function SDL2_image function IMG_LoadPCX_RW in IMG_pcx.c [fedora-all]↗2019-09-16
Bugzilla▶
CVE-2019-12216 mingw-SDL2: SDL: heap-based buffer overflow in function SDL2_image function IMG_LoadPCX_RW in IMG_pcx.c [fedora-all]↗2019-09-16
Bugzilla▶
CVE-2019-12216 SDL2: SDL: heap-based buffer overflow in function SDL2_image function IMG_LoadPCX_RW in IMG_pcx.c [epel-7]↗2019-09-16
Bugzilla▶
CVE-2019-12216 SDL: heap-based buffer overflow in function SDL2_image function IMG_LoadPCX_RW in IMG_pcx.c↗2019-07-23