Oval Definition:oval:org.opensuse.security:def:20172888
Revision Date:2023-06-22Version:1
Title:CVE-2017-2888
Description:

An exploitable integer overflow vulnerability exists when creating a new RGB Surface in SDL 2.0.5. A specially crafted file can cause an integer overflow resulting in too little memory being allocated which can lead to a buffer overflow and potential code execution. An attacker can provide a specially crafted image file to trigger this vulnerability.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2017-2888
openSUSE-SU-2017:2893-1
openSUSE-SU-2017:2895-1
Mitre CVE-2017-2888
SUSE CVE-2017-2888
openSUSE-SU-2017:2893-1
openSUSE-SU-2017:2895-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.3
openSUSE Leap 15.4
openSUSE Leap 42.2
openSUSE Leap 42.3
openSUSE Tumbleweed
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 15
SUSE Linux Enterprise Desktop 15 SP1
SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise Desktop 15 SP3
SUSE Linux Enterprise Desktop 15 SP4
SUSE Linux Enterprise Desktop 15 SP5
SUSE Linux Enterprise High Performance Computing 15
SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise High Performance Computing 15 SP4
SUSE Linux Enterprise High Performance Computing 15 SP5
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP3
SUSE Linux Enterprise Module for Desktop Applications 15
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
SUSE Linux Enterprise Module for Desktop Applications 15 SP2
SUSE Linux Enterprise Module for Desktop Applications 15 SP3
SUSE Linux Enterprise Module for Desktop Applications 15 SP4
SUSE Linux Enterprise Module for Desktop Applications 15 SP5
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 15
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server 15 SP4
SUSE Linux Enterprise Server 15 SP5
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Linux Enterprise Server for SAP Applications 15 SP4
SUSE Linux Enterprise Server for SAP Applications 15 SP5
SUSE Linux Enterprise Storage 6
SUSE Linux Enterprise Storage 7
SUSE Linux Enterprise Storage 7.1
SUSE Manager Proxy 4.0
SUSE Manager Proxy 4.1
SUSE Manager Proxy 4.2
SUSE Manager Proxy 4.3
SUSE Manager Retail Branch Server 4.0
SUSE Manager Retail Branch Server 4.1
SUSE Manager Retail Branch Server 4.2
SUSE Manager Retail Branch Server 4.3
SUSE Manager Server 4.0
SUSE Manager Server 4.1
SUSE Manager Server 4.2
SUSE Manager Server 4.3
SUSE Package Hub for SUSE Linux Enterprise 12
Product(s):
Definition Synopsis
  • openSUSE Leap 42.2 is installed
  • AND Package Information
  • SDL2-2.0.3-9.5.1 is installed
  • AND SDL2 is signed with openSUSE key
  • OR
  • libSDL2-2_0-0-2.0.3-9.5.1 is installed
  • AND libSDL2-2_0-0 is signed with openSUSE key
  • OR
  • libSDL2-2_0-0-32bit-2.0.3-9.5.1 is installed
  • AND libSDL2-2_0-0-32bit is signed with openSUSE key
  • OR
  • libSDL2-devel-2.0.3-9.5.1 is installed
  • AND libSDL2-devel is signed with openSUSE key
  • OR
  • libSDL2-devel-32bit-2.0.3-9.5.1 is installed
  • AND libSDL2-devel-32bit is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 42.3 is installed
  • AND Package Information
  • SDL2-2.0.3-14 is installed
  • AND SDL2 is signed with openSUSE key
  • OR
  • libSDL2-2_0-0-2.0.3-14 is installed
  • AND libSDL2-2_0-0 is signed with openSUSE key
  • OR
  • libSDL2-2_0-0-32bit-2.0.3-14 is installed
  • AND libSDL2-2_0-0-32bit is signed with openSUSE key
  • OR
  • libSDL2-devel-2.0.3-14 is installed
  • AND libSDL2-devel is signed with openSUSE key
  • OR
  • libSDL2-devel-32bit-2.0.3-14 is installed
  • AND libSDL2-devel-32bit is signed with openSUSE key
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 is installed
  • AND Package Information
  • SDL2-2.0.5-7 is installed
  • OR libSDL2-2_0-0-2.0.5-7 is installed
  • OR libSDL2-2_0-0-32bit-2.0.3-14 is installed
  • OR libSDL2-devel-2.0.5-7 is installed
  • OR libSDL2-devel-32bit-2.0.3-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND SDL is not affected
    • Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • libSDL2-2_0-0-2.0.8-lp150.1 is installed
  • AND libSDL2-2_0-0 is signed with openSUSE key
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 is installed
  • AND Package Information
  • libSDL2-2_0-0-2.0.8-1 is installed
  • OR libSDL2-devel-2.0.8-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND SDL is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • OR SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND SDL is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Module for Desktop Applications 15 is installed
  • AND
  • libSDL2-2_0-0-2.0.8-1 is installed
  • OR libSDL2-devel-2.0.8-1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND
  • libSDL2-2_0-0-2.0.8-3.9 is installed
  • OR libSDL2-devel-2.0.8-3.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND Package Information
  • libSDL2-2_0-0-2.0.8-3.9 is installed
  • OR libSDL2-devel-2.0.8-3.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed
  • AND Package Information
  • libSDL2-2_0-0-2.0.8-9 is installed
  • OR libSDL2-devel-2.0.8-9 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Module for Desktop Applications 15 is installed
  • AND
  • libSDL2-2_0-0-2.0.8-1 is installed
  • OR libSDL2-devel-2.0.8-1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND
  • libSDL2-2_0-0-2.0.8-3.9 is installed
  • OR libSDL2-devel-2.0.8-3.9 is installed
  • OR Package Information
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed
  • AND
  • libSDL2-2_0-0-2.0.8-9 is installed
  • OR libSDL2-devel-2.0.8-9 is installed
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • libSDL2-2_0-0-2.0.16-2.3 is installed
  • OR libSDL2-2_0-0-32bit-2.0.16-2.3 is installed
  • OR libSDL2-devel-2.0.16-2.3 is installed
  • OR libSDL2-devel-32bit-2.0.16-2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND Package Information
  • libSDL2-2_0-0-2.0.8-3.9.1 is installed
  • OR libSDL2-devel-2.0.8-3.9.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 is installed
  • OR SUSE Linux Enterprise Module for additional PackageHub packages 15 SP3 is installed
  • AND libSDL2-2_0-0-32bit-2.0.8-9.63 is installed
  • OR Package Information
  • SUSE Linux Enterprise Module for Desktop Applications 15 is installed
  • AND
  • libSDL2-2_0-0-2.0.8-1.34 is installed
  • OR libSDL2-devel-2.0.8-1.34 is installed
  • OR Package Information
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND
  • libSDL2-2_0-0-2.0.8-3.9.1 is installed
  • OR libSDL2-devel-2.0.8-3.9.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed
  • OR SUSE Linux Enterprise Module for Desktop Applications 15 SP3 is installed
  • AND
  • libSDL2-2_0-0-2.0.8-9.63 is installed
  • OR libSDL2-devel-2.0.8-9.63 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • OR SUSE Linux Enterprise Server 12 SP3 is installed
  • AND SDL is not affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP3 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
  • OR SUSE Linux Enterprise Module for Desktop Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Server 15 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Storage 7.1 is installed
  • OR SUSE Manager Proxy 4.2 is installed
  • OR SUSE Manager Retail Branch Server 4.2 is installed
  • OR SUSE Manager Server 4.2 is installed
  • AND Package Information
  • libSDL2-2_0-0-2.0.8-9.63 is installed
  • OR libSDL2-devel-2.0.8-9.63 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP2 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP2 is installed
  • OR SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed
  • OR SUSE Linux Enterprise Server 15 SP2 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed
  • OR SUSE Linux Enterprise Storage 7 is installed
  • OR SUSE Manager Proxy 4.1 is installed
  • OR SUSE Manager Retail Branch Server 4.1 is installed
  • OR SUSE Manager Server 4.1 is installed
  • AND Package Information
  • libSDL2-2_0-0-2.0.8-9.63 is installed
  • OR libSDL2-devel-2.0.8-9.63 is installed
    • Definition Synopsis
  • openSUSE Leap 15.3 is installed
  • AND Package Information
  • libSDL2-2_0-0-2.0.8-9.63 is installed
  • AND libSDL2-2_0-0 is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 15.4 is installed
  • AND Package Information
  • libSDL2-2_0-0-2.0.8-150200.11.6.1 is installed
  • AND libSDL2-2_0-0 is signed with openSUSE key
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP2 is installed
  • OR SUSE Linux Enterprise Desktop 15 SP3 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP2 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
  • OR SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed
  • OR SUSE Linux Enterprise Module for Desktop Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Server 15 SP2 is installed
  • OR SUSE Linux Enterprise Server 15 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Storage 7 is installed
  • OR SUSE Linux Enterprise Storage 7.1 is installed
  • OR SUSE Manager Proxy 4.1 is installed
  • OR SUSE Manager Proxy 4.2 is installed
  • OR SUSE Manager Retail Branch Server 4.1 is installed
  • OR SUSE Manager Retail Branch Server 4.2 is installed
  • OR SUSE Manager Server 4.1 is installed
  • OR SUSE Manager Server 4.2 is installed
  • AND Package Information
  • libSDL2-2_0-0-2.0.8-9.63 is installed
  • OR libSDL2-devel-2.0.8-9.63 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP4 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP4 is installed
  • OR SUSE Linux Enterprise Module for Desktop Applications 15 SP4 is installed
  • OR SUSE Linux Enterprise Server 15 SP4 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP4 is installed
  • OR SUSE Manager Proxy 4.3 is installed
  • OR SUSE Manager Retail Branch Server 4.3 is installed
  • OR SUSE Manager Server 4.3 is installed
  • AND Package Information
  • libSDL2-2_0-0-2.0.8-150200.11.6.1 is installed
  • OR libSDL2-devel-2.0.8-150200.11.6.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP5 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed
  • OR SUSE Linux Enterprise Module for Desktop Applications 15 SP5 is installed
  • OR SUSE Linux Enterprise Server 15 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed
  • AND Package Information
  • libSDL2-2_0-0-2.0.8-150200.11.9.1 is installed
  • OR libSDL2-devel-2.0.8-150200.11.9.1 is installed
    • BACK