sdl2_image: Multiple vulnerabilities (CVE-2017-2887, CVE-2017-12122, CVE-2017-14440, CVE-2017-14441, CVE-2017-14442, CVE-2017-14448, CVE-2017-14450, CVE-2018-3837, CVE-2018-3838, CVE-2018-3839)
CVE-2017-2887: An exploitable buffer overflow vulnerability exists in the XCF property handling functionality of SDL_image 2.0.1.
Reference:
https://www.talosintelligence.com/vulnerability\_reports/TALOS-2017-0394
CVE-2017-12122: An exploitable code execution vulnerability exists in the ILBM image rendering functionality of SDL2_image-2.0.2.
Reference:
https://www.talosintelligence.com/vulnerability\_reports/TALOS-2017-0488
CVE-2017-14440: An exploitable code execution vulnerability exists in the ILBM image rendering functionality of SDL2_image-2.0.2.
Reference:
https://www.talosintelligence.com/vulnerability\_reports/TALOS-2017-0489
CVE-2017-14441: An exploitable code execution vulnerability exists in the ICO image rendering functionality of SDL2_image-2.0.2.
Reference:
https://www.talosintelligence.com/vulnerability\_reports/TALOS-2017-0490
CVE-2017-14442: An exploitable code execution vulnerability exists in the BMP image rendering functionality of SDL2_image-2.0.2.
Reference:
https://www.talosintelligence.com/vulnerability\_reports/TALOS-2017-0491
CVE-2017-14448: An exploitable code execution vulnerability exists in the XCF image rendering functionality of SDL2_image-2.0.2.
Reference:
https://www.talosintelligence.com/vulnerability\_reports/TALOS-2017-0497
CVE-2017-14450: A buffer overflow vulnerability exists in the GIF image parsing functionality of SDL2_image-2.0.2.
Reference:
https://www.talosintelligence.com/vulnerability\_reports/TALOS-2017-0499
CVE-2018-3837: An exploitable information disclosure vulnerability
exists in the PCX image rendering functionality of Simple
DirectMedia Layer SDL2_image-2.0.2.
Reference:
https://www.talosintelligence.com/vulnerability\_reports/TALOS-2018-0519
CVE-2018-3838: An exploitable information vulnerability exists in
the XCF image rendering functionality of Simple DirectMedia
Layer SDL2_image-2.0.2.
Reference:
https://www.talosintelligence.com/vulnerability\_reports/TALOS-2018-0520
CVE-2018-3839: An exploitable code execution vulnerability exists in
the XCF image rendering functionality of Simple DirectMedia
Layer SDL2_image-2.0.2.
Reference:
https://www.talosintelligence.com/vulnerability\_reports/TALOS-2018-0521
(from redmine: issue id 8940, created on 2018-05-29, closed on 2018-06-12)
- Relations:
- copied_to #8941 (closed)
- copied_to #8942 (closed)
- copied_to #8943 (closed)
- child #8941 (closed)
- child #8942 (closed)
- child #8943 (closed)