Описание
Security update for SDL2
This update for SDL2 fixes the following issues:
- CVE-2020-14409, CVE-2020-14410: Fixed overflow in surface pitch calculation (bsc#1181201, bsc#1181202).
Список пакетов
SUSE Enterprise Storage 6
libSDL2-2_0-0-2.0.8-3.18.1
libSDL2-devel-2.0.8-3.18.1
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS
libSDL2-2_0-0-2.0.8-3.18.1
libSDL2-devel-2.0.8-3.18.1
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS
libSDL2-2_0-0-2.0.8-3.18.1
libSDL2-devel-2.0.8-3.18.1
SUSE Linux Enterprise High Performance Computing 15-ESPOS
libSDL2-2_0-0-2.0.8-3.18.1
libSDL2-devel-2.0.8-3.18.1
SUSE Linux Enterprise High Performance Computing 15-LTSS
libSDL2-2_0-0-2.0.8-3.18.1
libSDL2-devel-2.0.8-3.18.1
SUSE Linux Enterprise Server 15 SP1-BCL
libSDL2-2_0-0-2.0.8-3.18.1
libSDL2-devel-2.0.8-3.18.1
SUSE Linux Enterprise Server 15 SP1-LTSS
libSDL2-2_0-0-2.0.8-3.18.1
libSDL2-devel-2.0.8-3.18.1
SUSE Linux Enterprise Server 15-LTSS
libSDL2-2_0-0-2.0.8-3.18.1
libSDL2-devel-2.0.8-3.18.1
SUSE Linux Enterprise Server for SAP Applications 15
libSDL2-2_0-0-2.0.8-3.18.1
libSDL2-devel-2.0.8-3.18.1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
libSDL2-2_0-0-2.0.8-3.18.1
libSDL2-devel-2.0.8-3.18.1
Ссылки
- Link for SUSE-SU-2022:0825-1
- E-Mail link for SUSE-SU-2022:0825-1
- SUSE Security Ratings
- SUSE Bug 1181201
- SUSE Bug 1181202
- SUSE CVE CVE-2020-14409 page
- SUSE CVE CVE-2020-14410 page
Описание
SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.
Затронутые продукты
SUSE Enterprise Storage 6:libSDL2-2_0-0-2.0.8-3.18.1
SUSE Enterprise Storage 6:libSDL2-devel-2.0.8-3.18.1
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-devel-2.0.8-3.18.1
Ссылки
- CVE-2020-14409
- SUSE Bug 1181202
- SUSE Bug 1200204
Описание
SDL (Simple DirectMedia Layer) through 2.0.12 has a heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP file.
Затронутые продукты
SUSE Enterprise Storage 6:libSDL2-2_0-0-2.0.8-3.18.1
SUSE Enterprise Storage 6:libSDL2-devel-2.0.8-3.18.1
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-devel-2.0.8-3.18.1
Ссылки
- CVE-2020-14410
- SUSE Bug 1181201
- SUSE Bug 1200204