PT-2019-17437 · Sdl+3 · Sdl2 Image+3

Icewall

Publicado

2019-07-03

Atualizado

2022-06-27

CVE-2019-5051

CVSS v3.1

8.8

Alta

Vetor

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions SDL2 image version 2.0.4

Description A heap-based buffer overflow issue exists when loading a PCX file. This is due to a missing error handler, which can lead to a buffer overflow and potential code execution. An attacker can trigger this issue by providing a specially crafted image file.

Recommendations For version 2.0.4, consider disabling the loading of PCX files until a patch is available to prevent potential code execution.

Exploit

Correção

Improper Handling of Exceptional Conditions

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-755CWE-787CWE-390

Identificadores relacionados

ALT-PU-2021-1289

CVE-2019-5051

DLA-1861-1

DLA-1865-1

MGASA-2019-0364

OPENSUSE-SU-2019:2070-1

OPENSUSE-SU-2019:2108-1

OPENSUSE-SU-2019_2070-1

OPENSUSE-SU-2024:10608-1

USN-4238-1

Produtos afetados

Alt Linux

Sdl2 Image

Suse

Ubuntu

PT-2019-17437 · Sdl+3 · Sdl2 Image+3

CVE-2019-5051

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 63