Debian Sdl-Image1.2 vulnerabilities

CVE-2026-35444 [HIGH] CVE-2026-35444: libsdl2-image - SDL_image is a library to load images of various formats as SDL surfaces. In do_... SDL_image is a library to load images of various formats as SDL surfaces. In do_layer_surface() in src/IMG_xcf.c, pixel index values from decoded XCF tile data are used directly as colormap indices without validating them against the colormap size (cm_num). A crafted .xcf file with a small colormap and out-of-range pixel indices causes heap out-of-bounds reads

CVE-2019-5060 [HIGH] CVE-2019-5060: libsdl2-image - An exploitable code execution vulnerability exists in the XPM image rendering fu... An exploitable code execution vulnerability exists in the XPM image rendering function of SDL2_image 2.0.4. A specially crafted XPM image can cause an integer overflow in the colorhash function, allocating too small of a buffer. This buffer can then be written out of bounds, resulting in a heap overflow, ultimately ending in code execution. An attacker can displ

CVE-2019-7635 [HIGH] CVE-2019-7635: libsdl1.2 - SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-b... SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in Blit1to4 in video/SDL_blit_1.c. Scope: local bookworm: resolved (fixed in 1.2.15+dfsg2-5) bullseye: resolved (fixed in 1.2.15+dfsg2-5)

CVE-2019-12219 [HIGH] CVE-2019-12219: libsdl2-image - An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 whe... An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 when used in conjunction with libSDL2_image.a in SDL2_image 2.0.4. There is an invalid free error in the SDL function SDL_SetError_REAL at SDL_error.c. Scope: local bookworm: resolved (fixed in 2.0.5+dfsg1-1) bullseye: resolved (fixed in 2.0.5+dfsg1-1) forky: resolved (fixed in 2.0.5+

CVE-2019-5057 [HIGH] CVE-2019-5057: libsdl2-image - An exploitable code execution vulnerability exists in the PCX image-rendering fu... An exploitable code execution vulnerability exists in the PCX image-rendering functionality of SDL2_image 2.0.4. A specially crafted PCX image can cause a heap overflow, resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability. Scope: local bookworm: resolved (fixed in 2.0.5+dfsg1-1) bullseye: resolved (fixed i

CVE-2019-5059 [HIGH] CVE-2019-5059: libsdl2-image - An exploitable code execution vulnerability exists in the XPM image rendering fu... An exploitable code execution vulnerability exists in the XPM image rendering functionality of SDL2_image 2.0.4. A specially crafted XPM image can cause an integer overflow, allocating too small of a buffer. This buffer can then be written out of bounds resulting in a heap overflow, ultimately ending in code execution. An attacker can display a specially crafted

CVE-2019-5058 [HIGH] CVE-2019-5058: libsdl2-image - An exploitable code execution vulnerability exists in the XCF image rendering fu... An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2_image 2.0.4. A specially crafted XCF image can cause a heap overflow, resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability. Scope: local bookworm: resolved (fixed in 2.0.5+dfsg1-1) bullseye: resolved (fixed i

CVE-2019-13616 [HIGH] CVE-2019-13616: libsdl1.2 - SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-b... SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in BlitNtoN in video/SDL_blit_N.c when called from SDL_SoftBlit in video/SDL_blit.c. Scope: local bookworm: resolved (fixed in 1.2.15+dfsg2-5) bullseye: resolved (fixed in 1.2.15+dfsg2-5)

CVE-2019-5051 [HIGH] CVE-2019-5051: libsdl2-image - An exploitable heap-based buffer overflow vulnerability exists when loading a PC... An exploitable heap-based buffer overflow vulnerability exists when loading a PCX file in SDL2_image, version 2.0.4. A missing error handler can lead to a buffer overflow and potential code execution. An attacker can provide a specially crafted image file to trigger this vulnerability. Scope: local bookworm: resolved (fixed in 2.0.5+dfsg1-1) bullseye: resolved (

CVE-2019-5052 [HIGH] CVE-2019-5052: libsdl2-image - An exploitable integer overflow vulnerability exists when loading a PCX file in ... An exploitable integer overflow vulnerability exists when loading a PCX file in SDL2_image 2.0.4. A specially crafted file can cause an integer overflow, resulting in too little memory being allocated, which can lead to a buffer overflow and potential code execution. An attacker can provide a specially crafted image file to trigger this vulnerability. Scope: loc

CVE-2019-12222 [MEDIUM] CVE-2019-12222: libsdl2-image - An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9. Th... An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9. There is an out-of-bounds read in the function SDL_InvalidateMap at video/SDL_pixels.c. Scope: local bookworm: resolved (fixed in 2.0.5+dfsg1-1) bullseye: resolved (fixed in 2.0.5+dfsg1-1) forky: resolved (fixed in 2.0.5+dfsg1-1) sid: resolved (fixed in 2.0.5+dfsg1-1) trixie: resol

CVE-2019-12220 [MEDIUM] CVE-2019-12220: libsdl2-image - An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 whe... An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 when used in conjunction with libSDL2_image.a in SDL2_image 2.0.4. There is an out-of-bounds read in the SDL function SDL_FreePalette_REAL at video/SDL_pixels.c. Scope: local bookworm: resolved (fixed in 2.0.5+dfsg1-1) bullseye: resolved (fixed in 2.0.5+dfsg1-1) forky: resolved (fix

CVE-2019-12216 [MEDIUM] CVE-2019-12216: libsdl2-image - An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 whe... An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 when used in conjunction with libSDL2_image.a in SDL2_image 2.0.4. There is a heap-based buffer overflow in the SDL2_image function IMG_LoadPCX_RW at IMG_pcx.c. Scope: local bookworm: resolved (fixed in 2.0.5+dfsg1-1) bullseye: resolved (fixed in 2.0.5+dfsg1-1) forky: resolved (fixe

CVE-2019-12217 [MEDIUM] CVE-2019-12217: libsdl2-image - An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 whe... An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 when used in conjunction with libSDL2_image.a in SDL2_image 2.0.4. There is a NULL pointer dereference in the SDL stdio_read function in file/SDL_rwops.c. Scope: local bookworm: resolved (fixed in 2.0.5+dfsg1-1) bullseye: resolved (fixed in 2.0.5+dfsg1-1) forky: resolved (fixed in 2

CVE-2019-12221 [MEDIUM] CVE-2019-12221: libsdl2-image - An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 whe... An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 when used in conjunction with libSDL2_image.a in SDL2_image 2.0.4. There is a SEGV in the SDL function SDL_free_REAL at stdlib/SDL_malloc.c. Scope: local bookworm: resolved (fixed in 2.0.5+dfsg1-1) bullseye: resolved (fixed in 2.0.5+dfsg1-1) forky: resolved (fixed in 2.0.5+dfsg1-1)

CVE-2019-12218 [MEDIUM] CVE-2019-12218: libsdl2-image - An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 whe... An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 when used in conjunction with libSDL2_image.a in SDL2_image 2.0.4. There is a NULL pointer dereference in the SDL2_image function IMG_LoadPCX_RW at IMG_pcx.c. Scope: local bookworm: resolved (fixed in 2.0.5+dfsg1-1) bullseye: resolved (fixed in 2.0.5+dfsg1-1) forky: resolved (fixed

CVE-2018-3977 [HIGH] CVE-2018-3977: libsdl2-image - An exploitable code execution vulnerability exists in the XCF image rendering fu... An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2_image-2.0.3. A specially crafted XCF image can cause a heap overflow, resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability. Scope: local bookworm: resolved (fixed in 2.0.3+dfsg1-3) bullseye: resolved (fixed i

CVE-2018-3839 [HIGH] CVE-2018-3839: libsdl2-image - An exploitable code execution vulnerability exists in the XCF image rendering fu... An exploitable code execution vulnerability exists in the XCF image rendering functionality of Simple DirectMedia Layer SDL2_image-2.0.2. A specially crafted XCF image can cause an out-of-bounds write on the heap, resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability. Scope: local bookworm: resolved (fixed i

CVE-2018-3838 [MEDIUM] CVE-2018-3838: libsdl2-image - An exploitable information vulnerability exists in the XCF image rendering funct... An exploitable information vulnerability exists in the XCF image rendering functionality of Simple DirectMedia Layer SDL2_image-2.0.2. A specially crafted XCF image can cause an out-of-bounds read on the heap, resulting in information disclosure. An attacker can display a specially crafted image to trigger this vulnerability. Scope: local bookworm: resolved (f

CVE-2018-3837 [MEDIUM] CVE-2018-3837: libsdl2-image - An exploitable information disclosure vulnerability exists in the PCX image rend... An exploitable information disclosure vulnerability exists in the PCX image rendering functionality of Simple DirectMedia Layer SDL2_image-2.0.2. A specially crafted PCX image can cause an out-of-bounds read on the heap, resulting in information disclosure . An attacker can display a specially crafted image to trigger this vulnerability. Scope: local bookworm: