Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2017-14449

Опубликовано: 24 апр. 2018
Источник: debian

Описание

A double-Free vulnerability exists in the XCF image rendering functionality of SDL2_image-2.0.2. A specially crafted XCF image can cause a Double-Free situation to occur. An attacker can display a specially crafted image to trigger this vulnerability.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
libsdl2-imagefixed2.0.3+dfsg1-1package
sdl-image1.2not-affectedpackage

Примечания

  • https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0498

  • https://hg.libsdl.org/SDL_image/rev/d0142861559c

Связанные уязвимости

ubuntu логотип

CVE-2017-14449

CVSS3: 7.5
ubuntu
почти 8 лет назад

A double-Free vulnerability exists in the XCF image rendering functionality of SDL2_image-2.0.2. A specially crafted XCF image can cause a Double-Free situation to occur. An attacker can display a specially crafted image to trigger this vulnerability.

nvd логотип

CVE-2017-14449

CVSS3: 7.5
nvd
почти 8 лет назад

A double-Free vulnerability exists in the XCF image rendering functionality of SDL2_image-2.0.2. A specially crafted XCF image can cause a Double-Free situation to occur. An attacker can display a specially crafted image to trigger this vulnerability.

github логотип

GHSA-xgp4-8gx6-q392

CVSS3: 8.8
github
больше 3 лет назад

A double-Free vulnerability exists in the XCF image rendering functionality of SDL2_image-2.0.2. A specially crafted XCF image can cause a Double-Free situation to occur. An attacker can display a specially crafted image to trigger this vulnerability.

suse-cvrf логотип

openSUSE-SU-2018:0734-1

suse-cvrf
почти 8 лет назад

Security update for SDL2, SDL2_image