Описание
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in Blit1to4 in video/SDL_blit_1.c.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libsdl1.2 | fixed | 1.2.15+dfsg2-5 | package | |
| libsdl1.2 | fixed | 1.2.15+dfsg2-4+deb10u1 | buster | package |
| libsdl2 | fixed | 2.0.10+dfsg1-1 | package | |
| sdl-image1.2 | fixed | 1.2.12-11 | package | |
| sdl-image1.2 | fixed | 1.2.12-10+deb10u1 | buster | package |
| sdl-image1.2 | fixed | 1.2.12-5+deb9u2 | stretch | package |
| libsdl2-image | fixed | 2.0.5+dfsg1-1 | package | |
| libsdl2-image | fixed | 2.0.4+dfsg1-1+deb10u1 | buster | package |
| libsdl2-image | fixed | 2.0.1+dfsg-2+deb9u2 | stretch | package |
Примечания
https://bugzilla.libsdl.org/show_bug.cgi?id=4498
https://hg.libsdl.org/SDL/rev/7c643f1c1887 (SDL-2)
two patches initially merged for SDL-1.2:
https://hg.libsdl.org/SDL/rev/08f3b4992538 (SDL-1.2) (correct)
https://hg.libsdl.org/SDL/rev/4646533663ae (SDL-1.2) (broken)
the second one is incorrect as was reverted in
https://hg.libsdl.org/SDL/rev/33940ce0a0ba
https://hg.libsdl.org/SDL_image/rev/03bd33e8cb49 (SDL_image-2)
https://hg.libsdl.org/SDL_image/rev/a3a7cac00d5f (SDL_image-1.2)
Связанные уязвимости
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in Blit1to4 in video/SDL_blit_1.c.
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in Blit1to4 in video/SDL_blit_1.c.
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in Blit1to4 in video/SDL_blit_1.c.
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in Blit1to4 in video/SDL_blit_1.c.
Уязвимость функции Blit1to4 библиотеки Simple DirectMedia Layer, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации