libsdl1.2 1.2.14-6.4ubuntu3.2 source package in Ubuntu
Changelog
libsdl1.2 (1.2.14-6.4ubuntu3.2) precise-security; urgency=medium
* SECURITY UPDATE: Heap-based buffer over-read
- debian/patches/CVE-2019-13616.patch: validate image size
when loading BMP files in src/video/SDL_bmp.c.
- CVE-2019-13616
* SECURITY UPDATE: Buffer over-read
- debian/patches/CVE-2019-7572*.patch: moving clamping the index
value at beginning of IMA_ADPCM_nibble in src/audio/SDL_wave.c.
- CVE-2019-7572
* SECURITY UPDATE: Heap-based buffer over-read
- debian/patches/CVE-2019-7573-76.patch: check if MS ADPCK chunk
was too short in src/audio/SDL_wave.c.
- CVE-2019-7573
- CVE-2019-7576
* SECURITY UPDATE: Heap-based buffer over-read
- debian/patches/CVE-2019-7574.patch: check if data chunk
was shorter than expected based on WAF format in
src/audio/SDL_wave.c.
- CVE-2019-7574
* SECURITY UPDATE: Heap-based buffer overflow and buffer over-read
- debian/patches/CVE-2019-7575-77-2.patch: check if
a WAV format defines shorter audio stream in
src/audio/SDL_wave.c.
- debian/patches/CVE-2019-7577.patch: checks overread in
src/audio/SDL_wave.c.
- CVE-2019-7575
- CVE-2019-7577
* SECURITY UPDATE: heap-based buffer over-read
- debian/patches/CVE-2019-7578.patch: fix in
src/audio/SDL_wave.c.
- CVE-2019-7578
* SECURITY UPDATE: heap-based buffer over-read
- debian/patches/CVE-2019-7635.patch: fix in
src/video/SDL_bmp.c.
- CVE-2019-7635
* SECURITY UPDATE: heap-baed buffer over-read
- debian/patches/CVE-2019-7636.patch: fix in
src/video/SDL_bmp.c.
- CVE-2019-7636
* SECURITY UPDATE: heap-based buffer overflow
- debian/patches/CVE-2019-7637*.patch: fix in
src/video/SDL_pixels.c, src/video/gapi/SDL_gapivideo.c.
- CVE-2019-7637
* fixing a patch error
- debian/patches/fix_error_patching*.patch: in
src/audio/SDL_wave.c, src/video/SDL_pixels.c.
-- <email address hidden> (Leonidas S. Barbosa) Tue, 15 Oct 2019 14:39:37 -0300
Upload details
- Uploaded by:
- Leonidas S. Barbosa
- Uploaded to:
- Precise
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- libs
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Precise | updates | main | libs | |
| Precise | security | main | libs |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| libsdl1.2_1.2.14.orig.tar.gz | 3.8 MiB | 5d927e287034cb6bb0ebccfa382cb1d185cb113c8ab5115a0759798642eed9b6 |
| libsdl1.2_1.2.14-6.4ubuntu3.2.debian.tar.gz | 250.1 KiB | d330b63af1ff0ec8b0533097ddec10d67a6d28d34133fba8d2a15b6c8b1ef250 |
| libsdl1.2_1.2.14-6.4ubuntu3.2.dsc | 2.4 KiB | 401677b87bbe1731c98685527dde03e184e5d2ac488686ae98f211916adfc4c1 |
Available diffs
Binary packages built by this source
- libsdl1.2-dbg: Simple DirectMedia Layer debug files
SDL is a library that allows programs portable low level access to a video
framebuffer, audio output, mouse, and keyboard.
.
This package contains the debug symbols for the SDL library.
- libsdl1.2-dev: Simple DirectMedia Layer development files
SDL is a library that allows programs portable low level access to a video
framebuffer, audio output, mouse, and keyboard.
.
This package contains the files needed to compile and link programs which
use SDL.
- libsdl1.2debian: Simple DirectMedia Layer
SDL is a library that allows programs portable low level access to
a video framebuffer, audio output, mouse, and keyboard.
.
This version of SDL is compiled with X11 and caca graphics
drivers and OSS, ALSA, NAS and PulseAudio sound drivers.
- libsdl1.2debian-dbgsym: debug symbols for package libsdl1.2debian
SDL is a library that allows programs portable low level access to
a video framebuffer, audio output, mouse, and keyboard.
.
This version of SDL is compiled with X11 and caca graphics
drivers and OSS, ALSA, NAS and PulseAudio sound drivers.
