Oval Definition:oval:org.opensuse.security:def:67379
Revision Date:2022-01-12Version:1
Title:Security update for SDL2 (Important) (in QA)
Description:

This update for SDL2 fixes the following issues:

- CVE-2020-14409: Fixed Integer Overflow resulting in heap corruption in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP (bsc#1181202). - CVE-2020-14410: Fixed heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP (bsc#1181201).

This patch is currently in QA and not yet available for download.
Family:unixClass:patch
Status:Reference(s):1055186
1058115
1065600
1065729
1094244
1136666
1152148
1152472
1152489
1153274
1154353
1155518
1155798
1156395
1167527
1170232
1170774
1171000
1171068
1171073
1171558
1171688
1171742
1172419
1172757
1172873
1173017
1173060
1173115
1173267
1173746
1174029
1174110
1174111
1174358
1174484
1174486
1174899
1175263
1175667
1175718
1175749
1175787
1175882
1175952
1175996
1175997
1175998
1175999
1176000
1176001
1176019
1176022
1176038
1176063
1176137
1176235
1176236
1176237
1176242
1176278
1176357
1176358
1176359
1176360
1176361
1176362
1176363
1176364
1176365
1176366
1176367
1176381
1176423
1176449
1176482
1176486
1176507
1176536
1176537
1176538
1176539
1176540
1176541
1176542
1176544
1176545
1176546
1176548
1176558
1176559
1176587
1176588
1176659
1176698
1176699
1176700
1176721
1176722
1176725
1176732
1176763
1176775
1176788
1176789
1176833
1176869
1176877
1176925
1176962
1176980
1176990
1177021
1177030
1178666
1178667
1178668
1181201
1181202
CVE-2020-0404
CVE-2020-0427
CVE-2020-0431
CVE-2020-0432
CVE-2020-14385
CVE-2020-14390
CVE-2020-14409
CVE-2020-14410
CVE-2020-25212
CVE-2020-25284
CVE-2020-25694
CVE-2020-25695
CVE-2020-25696
CVE-2020-26088
SUSE-SU-2020:2879-1
SUSE-SU-2020:3476-1
Platform(s):SUSE Linux Enterprise Module for Live Patching 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP3
SUSE Linux Enterprise Module for Server Applications 15 SP2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP2 is installed
  • AND Package Information
  • kernel-default-5.3.18-24.24 is installed
  • OR kernel-default-livepatch-5.3.18-24.24 is installed
  • OR kernel-default-livepatch-devel-5.3.18-24.24 is installed
  • OR kernel-livepatch-5_3_18-24_24-default-1-5.3 is installed
  • OR kernel-livepatch-SLE15-SP2_Update_4-1-5.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
  • AND Package Information
  • postgresql10-10.15-8.22 is installed
  • OR postgresql10-contrib-10.15-8.22 is installed
  • OR postgresql10-devel-10.15-8.22 is installed
  • OR postgresql10-docs-10.15-8.22 is installed
  • OR postgresql10-plperl-10.15-8.22 is installed
  • OR postgresql10-plpython-10.15-8.22 is installed
  • OR postgresql10-pltcl-10.15-8.22 is installed
  • OR postgresql10-server-10.15-8.22 is installed
    • BACK