Wind River Support Network

HomeDefectsLIN10-6126

Fixed

LIN10-6126 : Security Advisory - libsdl - CVE-2019-13616

Created: Jul 16, 2019 Updated: Jan 2, 2020

Resolved Date: Nov 21, 2019

Found In Version: 10.17.41.1

Fix Version: 10.17.41.19

Severity: Standard

Applicable for: Wind River Linux LTS 17

Component/s: Userspace

Description

SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in BlitNtoN in video/SDL_blit_N.c when called from SDL_SoftBlit in video/SDL_blit.c.

CREATE(Triage): {Link=https://nvd.nist.gov/vuln/detail/CVE-2019-13616 User=admin}

CVEs

CVE-2019-13616