Oval Definition:oval:org.opensuse.security:def:74399
Revision Date:2022-01-12Version:1
Title:Security update for SDL2 (Important) (in QA)
Description:

This update for SDL2 fixes the following issues:

- CVE-2020-14409: Fixed Integer Overflow resulting in heap corruption in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP (bsc#1181202). - CVE-2020-14410: Fixed heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP (bsc#1181201).

This patch is currently in QA and not yet available for download.
Family:unixClass:patch
Status:Reference(s):1149203
1173159
1181201
1181202
CVE-2019-6446
CVE-2020-10730
CVE-2020-14409
CVE-2020-14410
openSUSE-SU-2019:2227-1
openSUSE-SU-2020:1121-1
Platform(s):openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 15 SP3
SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise Module for Desktop Applications 15 SP3
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Manager Proxy 4.2
SUSE Manager Server 4.2
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • python-numpy-1.16.1-lp151.5.3 is installed
  • OR python-numpy_1_16_1-gnu-hpc-1.16.1-lp151.5.3 is installed
  • OR python2-numpy-1.16.1-lp151.5.3 is installed
  • OR python2-numpy-devel-1.16.1-lp151.5.3 is installed
  • OR python2-numpy-gnu-hpc-1.16.1-lp151.5.3 is installed
  • OR python2-numpy-gnu-hpc-devel-1.16.1-lp151.5.3 is installed
  • OR python2-numpy_1_16_1-gnu-hpc-1.16.1-lp151.5.3 is installed
  • OR python2-numpy_1_16_1-gnu-hpc-devel-1.16.1-lp151.5.3 is installed
  • OR python3-numpy-1.16.1-lp151.5.3 is installed
  • OR python3-numpy-devel-1.16.1-lp151.5.3 is installed
  • OR python3-numpy-gnu-hpc-1.16.1-lp151.5.3 is installed
  • OR python3-numpy-gnu-hpc-devel-1.16.1-lp151.5.3 is installed
  • OR python3-numpy_1_16_1-gnu-hpc-1.16.1-lp151.5.3 is installed
  • OR python3-numpy_1_16_1-gnu-hpc-devel-1.16.1-lp151.5.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP3 is installed
  • AND Package Information
  • libSDL2-2_0-0-2.0.8-11.3.1 is installed
  • OR libSDL2-devel-2.0.8-11.3.1 is installed
    • BACK