Oval Definition:oval:org.opensuse.security:def:20195051
Revision Date:2022-06-30Version:1
Title:CVE-2019-5051
Description:

An exploitable heap-based buffer overflow vulnerability exists when loading a PCX file in SDL2_image, version 2.0.4. A missing error handler can lead to a buffer overflow and potential code execution. An attacker can provide a specially crafted image file to trigger this vulnerability.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2019-5051
openSUSE-SU-2019:2070-1
openSUSE-SU-2019:2108-1
Mitre CVE-2019-5051
SUSE CVE-2019-5051
openSUSE-SU-2019:2070-1
openSUSE-SU-2019:2108-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
openSUSE Tumbleweed
SUSE Linux Enterprise High Performance Computing 15
SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Server 15
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Storage 6
SUSE Manager Proxy 4.0
SUSE Manager Server 4.0
SUSE Package Hub for SUSE Linux Enterprise 15
SUSE Package Hub for SUSE Linux Enterprise 15 SP1
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • SDL2_image-2.0.5-lp150.9 is installed
  • AND SDL2_image is signed with openSUSE key
  • OR
  • libSDL2_image-2_0-0-2.0.5-lp150.9 is installed
  • AND libSDL2_image-2_0-0 is signed with openSUSE key
  • OR
  • libSDL2_image-2_0-0-32bit-2.0.5-lp150.9 is installed
  • AND libSDL2_image-2_0-0-32bit is signed with openSUSE key
  • OR
  • libSDL2_image-devel-2.0.5-lp150.9 is installed
  • AND libSDL2_image-devel is signed with openSUSE key
  • OR
  • libSDL2_image-devel-32bit-2.0.5-lp150.9 is installed
  • AND libSDL2_image-devel-32bit is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • SDL2_image-2.0.5-lp151.2.5 is installed
  • AND SDL2_image is signed with openSUSE key
  • OR
  • libSDL2_image-2_0-0-2.0.5-lp151.2.5 is installed
  • AND libSDL2_image-2_0-0 is signed with openSUSE key
  • OR
  • libSDL2_image-2_0-0-32bit-2.0.5-lp151.2.5 is installed
  • AND libSDL2_image-2_0-0-32bit is signed with openSUSE key
  • OR
  • libSDL2_image-devel-2.0.5-lp151.2.5 is installed
  • AND libSDL2_image-devel is signed with openSUSE key
  • OR
  • libSDL2_image-devel-32bit-2.0.5-lp151.2.5 is installed
  • AND libSDL2_image-devel-32bit is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • libSDL2_image-2_0-0-2.0.5-1.14 is installed
  • OR libSDL2_image-2_0-0-32bit-2.0.5-1.14 is installed
  • OR libSDL2_image-devel-2.0.5-1.14 is installed
  • OR libSDL2_image-devel-32bit-2.0.5-1.14 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 SP1 is installed
  • AND Package Information
  • libSDL2_image-2_0-0-2.0.5-bp151.4.3.1 is installed
  • OR libSDL2_image-2_0-0-64bit-2.0.5-bp151.4.3.1 is installed
  • OR libSDL2_image-devel-2.0.5-bp151.4.3.1 is installed
  • OR libSDL2_image-devel-64bit-2.0.5-bp151.4.3.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Package Hub for SUSE Linux Enterprise 15 SP1 is installed
  • AND
  • libSDL2_image-2_0-0-2.0.5-bp151.4.3.1 is installed
  • OR libSDL2_image-2_0-0-64bit-2.0.5-bp151.4.3.1 is installed
  • OR libSDL2_image-devel-2.0.5-bp151.4.3.1 is installed
  • OR libSDL2_image-devel-64bit-2.0.5-bp151.4.3.1 is installed
  • OR Package Information
  • SUSE Package Hub for SUSE Linux Enterprise 15 is installed
  • AND
  • libSDL2_image-2_0-0-2.0.5-bp150.3.6.1 is installed
  • OR libSDL2_image-2_0-0-64bit-2.0.5-bp150.3.6.1 is installed
  • OR libSDL2_image-devel-2.0.5-bp150.3.6.1 is installed
  • OR libSDL2_image-devel-64bit-2.0.5-bp150.3.6.1 is installed
    • BACK