Debian Sdl-Image1.2 vulnerabilities

30 known vulnerabilities affecting debian/sdl-image1.2.

Total CVEs

30

CISA KEV

0

Public exploits

1

Exploited in wild

0

Severity breakdown

HIGH20MEDIUM10

Vulnerabilities

Page 2 of 2

CVE-2017-14450HIGHCVSS 7.1fixed in libsdl2-image 2.0.3+dfsg1-1 (bookworm)2017

CVE-2017-14450 [HIGH] CVE-2017-14450: libsdl2-image - A buffer overflow vulnerability exists in the GIF image parsing functionality of... A buffer overflow vulnerability exists in the GIF image parsing functionality of SDL2_image-2.0.2. A specially crafted GIF image can lead to a buffer overflow on a global section. An attacker can display an image to trigger this vulnerability. Scope: local bookworm: resolved (fixed in 2.0.3+dfsg1-1) bullseye: resolved (fixed in 2.0.3+dfsg1-1) forky: resolved (

CVE-2017-14442HIGHCVSS 8.8fixed in libsdl2-image 2.0.3+dfsg1-1 (bookworm)2017

CVE-2017-14442 [HIGH] CVE-2017-14442: libsdl2-image - An exploitable code execution vulnerability exists in the BMP image rendering fu... An exploitable code execution vulnerability exists in the BMP image rendering functionality of SDL2_image-2.0.2. A specially crafted BMP image can cause a stack overflow resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability. Scope: local bookworm: resolved (fixed in 2.0.3+dfsg1-1) bullseye: resolved (fixed

CVE-2017-14441HIGHCVSS 8.8fixed in libsdl2-image 2.0.3+dfsg1-1 (bookworm)2017

CVE-2017-14441 [HIGH] CVE-2017-14441: libsdl2-image - An exploitable code execution vulnerability exists in the ICO image rendering fu... An exploitable code execution vulnerability exists in the ICO image rendering functionality of SDL2_image-2.0.2. A specially crafted ICO image can cause an integer overflow, cascading to a heap overflow resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability. Scope: local bookworm: resolved (fixed in 2.0.3+d

CVE-2017-12122HIGHCVSS 8.8fixed in libsdl2-image 2.0.3+dfsg1-1 (bookworm)2017

CVE-2017-12122 [HIGH] CVE-2017-12122: libsdl2-image - An exploitable code execution vulnerability exists in the ILBM image rendering f... An exploitable code execution vulnerability exists in the ILBM image rendering functionality of SDL2_image-2.0.2. A specially crafted ILBM image can cause a heap overflow resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability. Scope: local bookworm: resolved (fixed in 2.0.3+dfsg1-1) bullseye: resolved (fixe

CVE-2017-14448HIGHCVSS 8.8fixed in libsdl2-image 2.0.3+dfsg1-1 (bookworm)2017

CVE-2017-14448 [HIGH] CVE-2017-14448: libsdl2-image - An exploitable code execution vulnerability exists in the XCF image rendering fu... An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2_image-2.0.2. A specially crafted XCF image can cause a heap overflow resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability. Scope: local bookworm: resolved (fixed in 2.0.3+dfsg1-1) bullseye: resolved (fixed

CVE-2017-14449HIGHCVSS 7.5fixed in libsdl2-image 2.0.3+dfsg1-1 (bookworm)2017

CVE-2017-14449 [HIGH] CVE-2017-14449: libsdl2-image - A double-Free vulnerability exists in the XCF image rendering functionality of S... A double-Free vulnerability exists in the XCF image rendering functionality of SDL2_image-2.0.2. A specially crafted XCF image can cause a Double-Free situation to occur. An attacker can display a specially crafted image to trigger this vulnerability. Scope: local bookworm: resolved (fixed in 2.0.3+dfsg1-1) bullseye: resolved (fixed in 2.0.3+dfsg1-1) forky: re

CVE-2017-14440HIGHCVSS 8.8fixed in libsdl2-image 2.0.3+dfsg1-1 (bookworm)2017

CVE-2017-14440 [HIGH] CVE-2017-14440: libsdl2-image - An exploitable code execution vulnerability exists in the ILBM image rendering f... An exploitable code execution vulnerability exists in the ILBM image rendering functionality of SDL2_image-2.0.2. A specially crafted ILBM image can cause a stack overflow resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability. Scope: local bookworm: resolved (fixed in 2.0.3+dfsg1-1) bullseye: resolved (fix

CVE-2017-2887HIGHCVSS 8.8fixed in libsdl2-image 2.0.1+dfsg-4 (bookworm)2017

CVE-2017-2887 [HIGH] CVE-2017-2887: libsdl2-image - An exploitable buffer overflow vulnerability exists in the XCF property handling... An exploitable buffer overflow vulnerability exists in the XCF property handling functionality of SDL_image 2.0.1. A specially crafted xcf file can cause a stack-based buffer overflow resulting in potential code execution. An attacker can provide a specially crafted XCF file to trigger this vulnerability. Scope: local bookworm: resolved (fixed in 2.0.1+dfsg-4) b

CVE-2008-0544MEDIUMCVSS 10.0fixed in sdl-image1.2 1.2.6-3 (bookworm)2008

CVE-2008-0544 [CRITICAL] CVE-2008-0544: sdl-image1.2 - Heap-based buffer overflow in the IMG_LoadLBM_RW function in IMG_lbm.c in SDL_im... Heap-based buffer overflow in the IMG_LoadLBM_RW function in IMG_lbm.c in SDL_image before 1.2.7 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted IFF ILBM file. NOTE: some of these details are obtained from third party information. Scope: local bookworm: resolved (fixed in 1.2.6-3) bulls

CVE-2007-6697MEDIUMCVSS 2.6PoCfixed in sdl-image1.2 1.2.6-2 (bookworm)2007

CVE-2007-6697 [LOW] CVE-2007-6697: sdl-image1.2 - Buffer overflow in the LWZReadByte function in IMG_gif.c in SDL_image before 1.2... Buffer overflow in the LWZReadByte function in IMG_gif.c in SDL_image before 1.2.7 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted GIF file, a similar issue to CVE-2006-4484. NOTE: some of these details are obtained from third party information. Scope: local bookworm: resolved (fixed in 1.2.

← Previous2 / 2