Oval Definition:oval:org.opensuse.security:def:70579
Revision Date:2022-01-12Version:1
Title:Security update for SDL2 (Important) (in QA)
Description:

This update for SDL2 fixes the following issues:

- CVE-2020-14409: Fixed Integer Overflow resulting in heap corruption in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP (bsc#1181202). - CVE-2020-14410: Fixed heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP (bsc#1181201).

This patch is currently in QA and not yet available for download.
Family:unixClass:patch
Status:Reference(s):1168994
1173812
1174463
1174570
1178593
1181201
1181202
CVE-2017-18926
CVE-2020-10713
CVE-2020-14308
CVE-2020-14309
CVE-2020-14310
CVE-2020-14311
CVE-2020-14409
CVE-2020-14410
CVE-2020-15706
CVE-2020-15707
Platform(s):SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Server 15 SP2-LTSS
SUSE Linux Enterprise Server for SAP Applications 15 SP2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • grub2-2.04-9.7 is installed
  • OR grub2-arm64-efi-debug-2.04-9.7 is installed
  • OR grub2-branding-upstream-2.04-9.7 is installed
  • OR grub2-i386-pc-debug-2.04-9.7 is installed
  • OR grub2-powerpc-ieee1275-debug-2.04-9.7 is installed
  • OR grub2-s390x-emu-debug-2.04-9.7 is installed
  • OR grub2-x86_64-efi-debug-2.04-9.7 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 15 SP2-LTSS is installed
  • AND
  • libSDL2-2_0-0-2.0.8-11.3.1 is installed
  • OR libSDL2-devel-2.0.8-11.3.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed
  • AND
  • libSDL2-2_0-0-2.0.8-11.3.1 is installed
  • OR libSDL2-devel-2.0.8-11.3.1 is installed
    • BACK