--------------------------------------------------------------------------------Fedora Update Notification
FEDORA-2019-7a554204c1
2019-02-26 03:04:46.115334
--------------------------------------------------------------------------------Name        : SDL
Product     : Fedora 29
Version     : 1.2.15
Release     : 36.fc29
URL         : http://www.libsdl.org/
Summary     : A cross-platform multimedia library
Description :
Simple DirectMedia Layer (SDL) is a cross-platform multimedia library designed
to provide fast access to the graphics frame buffer and audio device.

--------------------------------------------------------------------------------Update Information:

This release fixes various buffer overflows when parsing or processing damaged
Waveform audio and BMP image files.
--------------------------------------------------------------------------------ChangeLog:

* Fri Feb 15 2019 Petr Pisar  - 1.2.15-36
- Fix CVE-2019-7577 (a buffer overread in MS_ADPCM_decode) (bug #1676510)
- Fix CVE-2019-7575 (a buffer overwrite in MS_ADPCM_decode) (bug #1676744)
- Fix CVE-2019-7574 (a buffer overread in IMA_ADPCM_decode) (bug #1676750)
- Fix CVE-2019-7572 (a buffer overread in IMA_ADPCM_nibble) (bug #1676754)
- Fix CVE-2019-7572 (a buffer overwrite in IMA_ADPCM_nibble) (bug #1676754)
- Fix CVE-2019-7573, CVE-2019-7576 (buffer overreads in InitMS_ADPCM)
  (bugs #1676752, #1676756)
- Fix CVE-2019-7578 (a buffer overread in InitIMA_ADPCM) (bug #1676782)
- Fix CVE-2019-7638, CVE-2019-7636 (buffer overflows when processing BMP
  images with too high number of colors) (bugs #1677144, #1677157)
- Fix CVE-2019-7637 (an integer overflow in SDL_CalculatePitch) (bug #1677152)
- Fix CVE-2019-7635 (a buffer overread when blitting a BMP image with pixel
  colors out the palette) (bug #1677159)
- Reject 2, 3, 5, 6, 7-bpp BMP images (bug #1677159)
* Mon Jan 14 2019 Petr Pisar  - 1.2.15-35
- Remove manual updating of config.{guess,sub} - this has been part of
  %configure since 2013
- Use system glext.h to prevent from clashing on a GL_GLEXT_VERSION definition
  (bug #1662778)
* Tue Aug 28 2018 Petr Pisar  - 1.2.15-34
- Remove useless build-time dependency on audiofile-devel
--------------------------------------------------------------------------------References:

  [ 1 ] Bug #1676509 - CVE-2019-7577 SDL: Buffer over-read in function SDL_LoadWAV_RW in audio/SDL_wave.c
        https://bugzilla.redhat.com/show_bug.cgi?id=1676509
  [ 2 ] Bug #1676743 - CVE-2019-7575 SDL: Heap based buffer overflow in function MS_ADPCM_decode in audio/SDL_wave.c
        https://bugzilla.redhat.com/show_bug.cgi?id=1676743
  [ 3 ] Bug #1676749 - CVE-2019-7574 SDL: heap-based buffer over-read in IMA_ADPCM_decode in audio/SDL_wave.c
        https://bugzilla.redhat.com/show_bug.cgi?id=1676749
  [ 4 ] Bug #1676753 - CVE-2019-7572 SDL: Buffer over-read in IMA_ADPCM_nibble in audio/SDL_wave.c
        https://bugzilla.redhat.com/show_bug.cgi?id=1676753
  [ 5 ] Bug #1676751 - CVE-2019-7573 SDL: heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c
        https://bugzilla.redhat.com/show_bug.cgi?id=1676751
  [ 6 ] Bug #1676755 - CVE-2019-7576 SDL: heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c
        https://bugzilla.redhat.com/show_bug.cgi?id=1676755
  [ 7 ] Bug #1676781 - CVE-2019-7578 SDL: heap-based buffer over-read in InitIMA_ADPCM in audio/SDL_wave.c
        https://bugzilla.redhat.com/show_bug.cgi?id=1676781
  [ 8 ] Bug #1677143 - CVE-2019-7638 SDL: heap-based buffer over-read in Map1toN in video/SDL_pixels.c
        https://bugzilla.redhat.com/show_bug.cgi?id=1677143
  [ 9 ] Bug #1677156 - CVE-2019-7636 SDL: heap-based buffer over-read in SDL_GetRGB in video/SDL_pixels.c
        https://bugzilla.redhat.com/show_bug.cgi?id=1677156
  [ 10 ] Bug #1677151 - CVE-2019-7637 SDL: heap-based buffer overflow in SDL_FillRect in video/SDL_surface.c
        https://bugzilla.redhat.com/show_bug.cgi?id=1677151
  [ 11 ] Bug #1677158 - CVE-2019-7635 SDL: heap-based buffer over-read in Blit1to4 in video/SDL_blit_1.c
        https://bugzilla.redhat.com/show_bug.cgi?id=1677158
--------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2019-7a554204c1' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
--------------------------------------------------------------------------------_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Fedora 29: SDL Security Update 2019-7a554204c1

February 26, 2019
This release fixes various buffer overflows when parsing or processing damaged Waveform audio and BMP image files.

Summary

Simple DirectMedia Layer (SDL) is a cross-platform multimedia library designed

to provide fast access to the graphics frame buffer and audio device.

This release fixes various buffer overflows when parsing or processing damaged

Waveform audio and BMP image files.

* Fri Feb 15 2019 Petr Pisar - 1.2.15-36

- Fix CVE-2019-7577 (a buffer overread in MS_ADPCM_decode) (bug #1676510)

- Fix CVE-2019-7575 (a buffer overwrite in MS_ADPCM_decode) (bug #1676744)

- Fix CVE-2019-7574 (a buffer overread in IMA_ADPCM_decode) (bug #1676750)

- Fix CVE-2019-7572 (a buffer overread in IMA_ADPCM_nibble) (bug #1676754)

- Fix CVE-2019-7572 (a buffer overwrite in IMA_ADPCM_nibble) (bug #1676754)

- Fix CVE-2019-7573, CVE-2019-7576 (buffer overreads in InitMS_ADPCM)

(bugs #1676752, #1676756)

- Fix CVE-2019-7578 (a buffer overread in InitIMA_ADPCM) (bug #1676782)

- Fix CVE-2019-7638, CVE-2019-7636 (buffer overflows when processing BMP

images with too high number of colors) (bugs #1677144, #1677157)

- Fix CVE-2019-7637 (an integer overflow in SDL_CalculatePitch) (bug #1677152)

- Fix CVE-2019-7635 (a buffer overread when blitting a BMP image with pixel

colors out the palette) (bug #1677159)

- Reject 2, 3, 5, 6, 7-bpp BMP images (bug #1677159)

* Mon Jan 14 2019 Petr Pisar - 1.2.15-35

- Remove manual updating of config.{guess,sub} - this has been part of

%configure since 2013

- Use system glext.h to prevent from clashing on a GL_GLEXT_VERSION definition

(bug #1662778)

* Tue Aug 28 2018 Petr Pisar - 1.2.15-34

- Remove useless build-time dependency on audiofile-devel

[ 1 ] Bug #1676509 - CVE-2019-7577 SDL: Buffer over-read in function SDL_LoadWAV_RW in audio/SDL_wave.c

https://bugzilla.redhat.com/show_bug.cgi?id=1676509

[ 2 ] Bug #1676743 - CVE-2019-7575 SDL: Heap based buffer overflow in function MS_ADPCM_decode in audio/SDL_wave.c

https://bugzilla.redhat.com/show_bug.cgi?id=1676743

[ 3 ] Bug #1676749 - CVE-2019-7574 SDL: heap-based buffer over-read in IMA_ADPCM_decode in audio/SDL_wave.c

https://bugzilla.redhat.com/show_bug.cgi?id=1676749

[ 4 ] Bug #1676753 - CVE-2019-7572 SDL: Buffer over-read in IMA_ADPCM_nibble in audio/SDL_wave.c

https://bugzilla.redhat.com/show_bug.cgi?id=1676753

[ 5 ] Bug #1676751 - CVE-2019-7573 SDL: heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c

https://bugzilla.redhat.com/show_bug.cgi?id=1676751

[ 6 ] Bug #1676755 - CVE-2019-7576 SDL: heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c

https://bugzilla.redhat.com/show_bug.cgi?id=1676755

[ 7 ] Bug #1676781 - CVE-2019-7578 SDL: heap-based buffer over-read in InitIMA_ADPCM in audio/SDL_wave.c

https://bugzilla.redhat.com/show_bug.cgi?id=1676781

[ 8 ] Bug #1677143 - CVE-2019-7638 SDL: heap-based buffer over-read in Map1toN in video/SDL_pixels.c

https://bugzilla.redhat.com/show_bug.cgi?id=1677143

[ 9 ] Bug #1677156 - CVE-2019-7636 SDL: heap-based buffer over-read in SDL_GetRGB in video/SDL_pixels.c

https://bugzilla.redhat.com/show_bug.cgi?id=1677156

[ 10 ] Bug #1677151 - CVE-2019-7637 SDL: heap-based buffer overflow in SDL_FillRect in video/SDL_surface.c

https://bugzilla.redhat.com/show_bug.cgi?id=1677151

[ 11 ] Bug #1677158 - CVE-2019-7635 SDL: heap-based buffer over-read in Blit1to4 in video/SDL_blit_1.c

https://bugzilla.redhat.com/show_bug.cgi?id=1677158

su -c 'dnf upgrade --advisory FEDORA-2019-7a554204c1' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

FEDORA-2019-7a554204c1 2019-02-26 03:04:46.115334 Product : Fedora 29 Version : 1.2.15 Release : 36.fc29 URL : http://www.libsdl.org/ Summary : A cross-platform multimedia library Description : Simple DirectMedia Layer (SDL) is a cross-platform multimedia library designed to provide fast access to the graphics frame buffer and audio device. This release fixes various buffer overflows when parsing or processing damaged Waveform audio and BMP image files. * Fri Feb 15 2019 Petr Pisar - 1.2.15-36 - Fix CVE-2019-7577 (a buffer overread in MS_ADPCM_decode) (bug #1676510) - Fix CVE-2019-7575 (a buffer overwrite in MS_ADPCM_decode) (bug #1676744) - Fix CVE-2019-7574 (a buffer overread in IMA_ADPCM_decode) (bug #1676750) - Fix CVE-2019-7572 (a buffer overread in IMA_ADPCM_nibble) (bug #1676754) - Fix CVE-2019-7572 (a buffer overwrite in IMA_ADPCM_nibble) (bug #1676754) - Fix CVE-2019-7573, CVE-2019-7576 (buffer overreads in InitMS_ADPCM) (bugs #1676752, #1676756) - Fix CVE-2019-7578 (a buffer overread in InitIMA_ADPCM) (bug #1676782) - Fix CVE-2019-7638, CVE-2019-7636 (buffer overflows when processing BMP images with too high number of colors) (bugs #1677144, #1677157) - Fix CVE-2019-7637 (an integer overflow in SDL_CalculatePitch) (bug #1677152) - Fix CVE-2019-7635 (a buffer overread when blitting a BMP image with pixel colors out the palette) (bug #1677159) - Reject 2, 3, 5, 6, 7-bpp BMP images (bug #1677159) * Mon Jan 14 2019 Petr Pisar - 1.2.15-35 - Remove manual updating of config.{guess,sub} - this has been part of %configure since 2013 - Use system glext.h to prevent from clashing on a GL_GLEXT_VERSION definition (bug #1662778) * Tue Aug 28 2018 Petr Pisar - 1.2.15-34 - Remove useless build-time dependency on audiofile-devel [ 1 ] Bug #1676509 - CVE-2019-7577 SDL: Buffer over-read in function SDL_LoadWAV_RW in audio/SDL_wave.c https://bugzilla.redhat.com/show_bug.cgi?id=1676509 [ 2 ] Bug #1676743 - CVE-2019-7575 SDL: Heap based buffer overflow in function MS_ADPCM_decode in audio/SDL_wave.c https://bugzilla.redhat.com/show_bug.cgi?id=1676743 [ 3 ] Bug #1676749 - CVE-2019-7574 SDL: heap-based buffer over-read in IMA_ADPCM_decode in audio/SDL_wave.c https://bugzilla.redhat.com/show_bug.cgi?id=1676749 [ 4 ] Bug #1676753 - CVE-2019-7572 SDL: Buffer over-read in IMA_ADPCM_nibble in audio/SDL_wave.c https://bugzilla.redhat.com/show_bug.cgi?id=1676753 [ 5 ] Bug #1676751 - CVE-2019-7573 SDL: heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c https://bugzilla.redhat.com/show_bug.cgi?id=1676751 [ 6 ] Bug #1676755 - CVE-2019-7576 SDL: heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c https://bugzilla.redhat.com/show_bug.cgi?id=1676755 [ 7 ] Bug #1676781 - CVE-2019-7578 SDL: heap-based buffer over-read in InitIMA_ADPCM in audio/SDL_wave.c https://bugzilla.redhat.com/show_bug.cgi?id=1676781 [ 8 ] Bug #1677143 - CVE-2019-7638 SDL: heap-based buffer over-read in Map1toN in video/SDL_pixels.c https://bugzilla.redhat.com/show_bug.cgi?id=1677143 [ 9 ] Bug #1677156 - CVE-2019-7636 SDL: heap-based buffer over-read in SDL_GetRGB in video/SDL_pixels.c https://bugzilla.redhat.com/show_bug.cgi?id=1677156 [ 10 ] Bug #1677151 - CVE-2019-7637 SDL: heap-based buffer overflow in SDL_FillRect in video/SDL_surface.c https://bugzilla.redhat.com/show_bug.cgi?id=1677151 [ 11 ] Bug #1677158 - CVE-2019-7635 SDL: heap-based buffer over-read in Blit1to4 in video/SDL_blit_1.c https://bugzilla.redhat.com/show_bug.cgi?id=1677158 su -c 'dnf upgrade --advisory FEDORA-2019-7a554204c1' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Change Log

References

Update Instructions

Severity
Product : Fedora 29
Version : 1.2.15
Release : 36.fc29
URL : http://www.libsdl.org/
Summary : A cross-platform multimedia library

Related News

24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
30.Lock Globe Motherboard Esm H320
1 - 2 min read
The SPDX 3.0 release marks a significant milestone in software management, particularly for Linux admins, infosec professionals, internet security
11.Locks IsometricPattern Esm H320
2 - 3 min read
Open Source maintainers and developers have been warned about the continued wave of attacks aimed at project maintainers similar to those recently
28.Lock Globe Esm H320
1 - 2 min read
A resurgence of cyberattacks targeting Linux systems in Asian campaigns through the utilization of the Pupy Remote Access Trojan (RAT) has been
27.Tablet Connections Blocks Lock Esm H320
2 - 4 min read
Canonical has recently announced the Beta release of Ubuntu Linux 24.04 LTS , codenamed "Noble Numbat." This release aims to continue Ubuntu's
21.Globe RadiatingCode Esm H320
2 - 3 min read
The open-source movement has come a long way, from its origins in the 1960s and 1970s to becoming an integral part of organizations worldwide.
13.Lock StylizedMotherboard Esm H320
2 - 3 min read
The Rust-based Edera project demonstrates a unique approach to container security that addresses cloud-native computing challenges. Let's examine
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved