Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2020-14409
Vulnerability from cvelistv5
Published
2021-01-19 00:00
Modified
2024-08-04 12:46
Severity ?
EPSS score ?
Summary
SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-04T12:46:34.513Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://bugzilla.libsdl.org/show_bug.cgi?id=5200", }, { tags: [ "x_transferred", ], url: "https://hg.libsdl.org/SDL/rev/3f9b4e92c1d9", }, { name: "[debian-lts-announce] 20210130 [SECURITY] [DLA 2536-1] libsdl2 security update", tags: [ "mailing-list", "x_transferred", ], url: "https://lists.debian.org/debian-lts-announce/2021/01/msg00024.html", }, { name: "FEDORA-2021-9d65b22041", tags: [ "vendor-advisory", "x_transferred", ], url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5FS32YCEJLQ2FYUWSWYI2ZMQWQEAWJNR/", }, { name: "GLSA-202107-55", tags: [ "vendor-advisory", "x_transferred", ], url: "https://security.gentoo.org/glsa/202107-55", }, { tags: [ "x_transferred", ], url: "https://www.starwindsoftware.com/security/sw-20210325-0001/", }, { name: "[debian-lts-announce] 20230208 [SECURITY] [DLA 3314-1] libsdl2 security update", tags: [ "mailing-list", "x_transferred", ], url: "https://lists.debian.org/debian-lts-announce/2023/02/msg00008.html", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], descriptions: [ { lang: "en", value: "SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2023-02-09T00:00:00", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { url: "https://bugzilla.libsdl.org/show_bug.cgi?id=5200", }, { url: "https://hg.libsdl.org/SDL/rev/3f9b4e92c1d9", }, { name: "[debian-lts-announce] 20210130 [SECURITY] [DLA 2536-1] libsdl2 security update", tags: [ "mailing-list", ], url: "https://lists.debian.org/debian-lts-announce/2021/01/msg00024.html", }, { name: "FEDORA-2021-9d65b22041", tags: [ "vendor-advisory", ], url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5FS32YCEJLQ2FYUWSWYI2ZMQWQEAWJNR/", }, { name: "GLSA-202107-55", tags: [ "vendor-advisory", ], url: "https://security.gentoo.org/glsa/202107-55", }, { url: "https://www.starwindsoftware.com/security/sw-20210325-0001/", }, { name: "[debian-lts-announce] 20230208 [SECURITY] [DLA 3314-1] libsdl2 security update", tags: [ "mailing-list", ], url: "https://lists.debian.org/debian-lts-announce/2023/02/msg00008.html", }, ], }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2020-14409", datePublished: "2021-01-19T00:00:00", dateReserved: "2020-06-17T00:00:00", dateUpdated: "2024-08-04T12:46:34.513Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { nvd: "{\"cve\":{\"id\":\"CVE-2020-14409\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2021-01-19T20:15:12.207\",\"lastModified\":\"2024-11-21T05:03:12.327\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.\"},{\"lang\":\"es\",\"value\":\"SDL (Simple DirectMedia Layer) versiones hasta 2.0.12, presenta un Desbordamiento de Enteros (y una corrupción de la pila de SDL_memcpy resultante) en SDL_BlitCopy en el archivo video/SDL_blit_copy.c por medio de un archivo .BMP diseñado\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:P\",\"baseScore\":6.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-190\"},{\"lang\":\"en\",\"value\":\"CWE-787\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:libsdl:simple_directmedia_layer:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.0.12\",\"versionEndIncluding\":\"2.0.20\",\"matchCriteriaId\":\"9E31AF92-F370-4233-9A36-40CB5DA3D1CA\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E460AA51-FCDA-46B9-AE97-E6676AA5E194\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:starwindsoftware:starwind_virtual_san:v8:build12533:*:*:*:vsphere:*:*\",\"matchCriteriaId\":\"0E5C2815-65C8-48D7-BF31-6104EDD0CBE5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:starwindsoftware:starwind_virtual_san:v8:build12658:*:*:*:vsphere:*:*\",\"matchCriteriaId\":\"6FF4A265-AFFD-4853-B3CE-A55E950E8B5B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:starwindsoftware:starwind_virtual_san:v8:build12859:*:*:*:vsphere:*:*\",\"matchCriteriaId\":\"E6484296-5BA8-408A-A087-A0D86BA50703\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:starwindsoftware:starwind_virtual_san:v8:build13170:*:*:*:vsphere:*:*\",\"matchCriteriaId\":\"5D31D4A3-7D1E-472F-9BB6-AF889DA7C763\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:starwindsoftware:starwind_virtual_san:v8:build13586:*:*:*:vsphere:*:*\",\"matchCriteriaId\":\"F67B6B43-FF39-4B05-8704-EDFCED4117E6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:starwindsoftware:starwind_virtual_san:v8:build13861:*:*:*:vsphere:*:*\",\"matchCriteriaId\":\"C79FA879-7855-467B-A98D-7D914940F9D3\"}]}]}],\"references\":[{\"url\":\"https://bugzilla.libsdl.org/show_bug.cgi?id=5200\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Vendor Advisory\"]},{\"url\":\"https://hg.libsdl.org/SDL/rev/3f9b4e92c1d9\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/01/msg00024.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/02/msg00008.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5FS32YCEJLQ2FYUWSWYI2ZMQWQEAWJNR/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202107-55\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.starwindsoftware.com/security/sw-20210325-0001/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.libsdl.org/show_bug.cgi?id=5200\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Vendor Advisory\"]},{\"url\":\"https://hg.libsdl.org/SDL/rev/3f9b4e92c1d9\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/01/msg00024.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/02/msg00008.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5FS32YCEJLQ2FYUWSWYI2ZMQWQEAWJNR/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202107-55\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.starwindsoftware.com/security/sw-20210325-0001/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}", }, }
suse-su-2022:1312-1
Vulnerability from csaf_suse
Published
2022-04-22 14:11
Modified
2022-04-22 14:11
Summary
Security update for SDL
Notes
Title of the patch
Security update for SDL
Description of the patch
This update for SDL fixes the following issues:
- CVE-2020-14409: Fixed an integer overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c. (bsc#1181202)
- CVE-2020-14410: Fixed a heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c. (bsc#1181201)
- CVE-2021-33657: Fixed a Heap overflow problem in video/SDL_pixels.c. (bsc#1198001)
Patchnames
HPE-Helion-OpenStack-8-2022-1312,SUSE-2022-1312,SUSE-OpenStack-Cloud-8-2022-1312,SUSE-OpenStack-Cloud-9-2022-1312,SUSE-OpenStack-Cloud-Crowbar-8-2022-1312,SUSE-OpenStack-Cloud-Crowbar-9-2022-1312,SUSE-SLE-SAP-12-SP3-2022-1312,SUSE-SLE-SAP-12-SP4-2022-1312,SUSE-SLE-SDK-12-SP5-2022-1312,SUSE-SLE-SERVER-12-SP2-BCL-2022-1312,SUSE-SLE-SERVER-12-SP3-2022-1312,SUSE-SLE-SERVER-12-SP3-BCL-2022-1312,SUSE-SLE-SERVER-12-SP4-LTSS-2022-1312,SUSE-SLE-SERVER-12-SP5-2022-1312
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for SDL", title: "Title of the patch", }, { category: "description", text: "This update for SDL fixes the following issues:\n\n- CVE-2020-14409: Fixed an integer overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c. (bsc#1181202)\n- CVE-2020-14410: Fixed a heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c. (bsc#1181201)\n- CVE-2021-33657: Fixed a Heap overflow problem in video/SDL_pixels.c. (bsc#1198001)\n ", title: "Description of the patch", }, { category: "details", text: "HPE-Helion-OpenStack-8-2022-1312,SUSE-2022-1312,SUSE-OpenStack-Cloud-8-2022-1312,SUSE-OpenStack-Cloud-9-2022-1312,SUSE-OpenStack-Cloud-Crowbar-8-2022-1312,SUSE-OpenStack-Cloud-Crowbar-9-2022-1312,SUSE-SLE-SAP-12-SP3-2022-1312,SUSE-SLE-SAP-12-SP4-2022-1312,SUSE-SLE-SDK-12-SP5-2022-1312,SUSE-SLE-SERVER-12-SP2-BCL-2022-1312,SUSE-SLE-SERVER-12-SP3-2022-1312,SUSE-SLE-SERVER-12-SP3-BCL-2022-1312,SUSE-SLE-SERVER-12-SP4-LTSS-2022-1312,SUSE-SLE-SERVER-12-SP5-2022-1312", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_1312-1.json", }, { category: "self", summary: "URL for SUSE-SU-2022:1312-1", url: "https://www.suse.com/support/update/announcement/2022/suse-su-20221312-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2022:1312-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010794.html", }, { category: "self", summary: "SUSE Bug 1181201", url: "https://bugzilla.suse.com/1181201", }, { category: "self", summary: "SUSE Bug 1181202", url: "https://bugzilla.suse.com/1181202", }, { category: "self", summary: "SUSE Bug 1198001", url: "https://bugzilla.suse.com/1198001", }, { category: "self", summary: "SUSE CVE CVE-2020-14409 page", url: "https://www.suse.com/security/cve/CVE-2020-14409/", }, { category: "self", summary: "SUSE CVE CVE-2020-14410 page", url: "https://www.suse.com/security/cve/CVE-2020-14410/", }, { category: "self", summary: "SUSE CVE CVE-2021-33657 page", url: "https://www.suse.com/security/cve/CVE-2021-33657/", }, ], title: "Security update for SDL", tracking: { current_release_date: "2022-04-22T14:11:15Z", generator: { date: "2022-04-22T14:11:15Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2022:1312-1", initial_release_date: "2022-04-22T14:11:15Z", revision_history: [ { date: "2022-04-22T14:11:15Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "libSDL-1_2-0-1.2.15-15.17.1.aarch64", product: { name: "libSDL-1_2-0-1.2.15-15.17.1.aarch64", product_id: "libSDL-1_2-0-1.2.15-15.17.1.aarch64", }, }, { category: "product_version", name: "libSDL-devel-1.2.15-15.17.1.aarch64", product: { name: "libSDL-devel-1.2.15-15.17.1.aarch64", product_id: "libSDL-devel-1.2.15-15.17.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "libSDL-1_2-0-64bit-1.2.15-15.17.1.aarch64_ilp32", product: { name: "libSDL-1_2-0-64bit-1.2.15-15.17.1.aarch64_ilp32", product_id: "libSDL-1_2-0-64bit-1.2.15-15.17.1.aarch64_ilp32", }, }, { category: "product_version", name: "libSDL-devel-64bit-1.2.15-15.17.1.aarch64_ilp32", product: { name: "libSDL-devel-64bit-1.2.15-15.17.1.aarch64_ilp32", product_id: "libSDL-devel-64bit-1.2.15-15.17.1.aarch64_ilp32", }, }, ], category: "architecture", name: "aarch64_ilp32", }, { branches: [ { category: "product_version", name: "libSDL-1_2-0-1.2.15-15.17.1.i586", product: { name: "libSDL-1_2-0-1.2.15-15.17.1.i586", product_id: "libSDL-1_2-0-1.2.15-15.17.1.i586", }, }, { category: "product_version", name: "libSDL-devel-1.2.15-15.17.1.i586", product: { name: "libSDL-devel-1.2.15-15.17.1.i586", product_id: "libSDL-devel-1.2.15-15.17.1.i586", }, }, ], category: "architecture", name: "i586", }, { branches: [ { category: "product_version", name: "libSDL-1_2-0-1.2.15-15.17.1.ppc64le", product: { name: "libSDL-1_2-0-1.2.15-15.17.1.ppc64le", product_id: "libSDL-1_2-0-1.2.15-15.17.1.ppc64le", }, }, { category: "product_version", name: "libSDL-devel-1.2.15-15.17.1.ppc64le", product: { name: "libSDL-devel-1.2.15-15.17.1.ppc64le", product_id: "libSDL-devel-1.2.15-15.17.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "libSDL-1_2-0-1.2.15-15.17.1.s390", product: { name: "libSDL-1_2-0-1.2.15-15.17.1.s390", product_id: "libSDL-1_2-0-1.2.15-15.17.1.s390", }, }, { category: "product_version", name: "libSDL-devel-1.2.15-15.17.1.s390", product: { name: "libSDL-devel-1.2.15-15.17.1.s390", product_id: "libSDL-devel-1.2.15-15.17.1.s390", }, }, ], category: "architecture", name: "s390", }, { branches: [ { category: "product_version", name: "libSDL-1_2-0-1.2.15-15.17.1.s390x", product: { name: "libSDL-1_2-0-1.2.15-15.17.1.s390x", product_id: "libSDL-1_2-0-1.2.15-15.17.1.s390x", }, }, { category: "product_version", name: "libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", product: { name: "libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", product_id: "libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", }, }, { category: "product_version", name: "libSDL-devel-1.2.15-15.17.1.s390x", product: { name: "libSDL-devel-1.2.15-15.17.1.s390x", product_id: "libSDL-devel-1.2.15-15.17.1.s390x", }, }, { category: "product_version", name: "libSDL-devel-32bit-1.2.15-15.17.1.s390x", product: { name: "libSDL-devel-32bit-1.2.15-15.17.1.s390x", product_id: "libSDL-devel-32bit-1.2.15-15.17.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "libSDL-1_2-0-1.2.15-15.17.1.x86_64", product: { name: "libSDL-1_2-0-1.2.15-15.17.1.x86_64", product_id: "libSDL-1_2-0-1.2.15-15.17.1.x86_64", }, }, { category: "product_version", name: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", product: { name: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", product_id: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", }, }, { category: "product_version", name: "libSDL-devel-1.2.15-15.17.1.x86_64", product: { name: "libSDL-devel-1.2.15-15.17.1.x86_64", product_id: "libSDL-devel-1.2.15-15.17.1.x86_64", }, }, { category: "product_version", name: "libSDL-devel-32bit-1.2.15-15.17.1.x86_64", product: { name: "libSDL-devel-32bit-1.2.15-15.17.1.x86_64", product_id: "libSDL-devel-32bit-1.2.15-15.17.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "HPE Helion OpenStack 8", product: { name: "HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8", product_identification_helper: { cpe: "cpe:/o:suse:hpe-helion-openstack:8", }, }, }, { category: "product_name", name: "SUSE OpenStack Cloud 8", product: { name: "SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8", product_identification_helper: { cpe: "cpe:/o:suse:suse-openstack-cloud:8", }, }, }, { category: "product_name", name: "SUSE OpenStack Cloud 9", product: { name: "SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9", product_identification_helper: { cpe: "cpe:/o:suse:suse-openstack-cloud:9", }, }, }, { category: "product_name", name: "SUSE OpenStack Cloud Crowbar 8", product: { name: "SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8", product_identification_helper: { cpe: "cpe:/o:suse:suse-openstack-cloud-crowbar:8", }, }, }, { category: "product_name", name: "SUSE OpenStack Cloud Crowbar 9", product: { name: "SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9", product_identification_helper: { cpe: "cpe:/o:suse:suse-openstack-cloud-crowbar:9", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", product: { name: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_identification_helper: { cpe: "cpe:/o:suse:sles_sap:12:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", product: { name: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_identification_helper: { cpe: "cpe:/o:suse:sles_sap:12:sp4", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Software Development Kit 12 SP5", product: { name: "SUSE Linux Enterprise Software Development Kit 12 SP5", product_id: "SUSE Linux Enterprise Software Development Kit 12 SP5", product_identification_helper: { cpe: "cpe:/o:suse:sle-sdk:12:sp5", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 12 SP2-BCL", product: { name: "SUSE Linux Enterprise Server 12 SP2-BCL", product_id: "SUSE Linux Enterprise Server 12 SP2-BCL", product_identification_helper: { cpe: "cpe:/o:suse:sles-bcl:12:sp2", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 12 SP3-LTSS", product: { name: "SUSE Linux Enterprise Server 12 SP3-LTSS", product_id: "SUSE Linux Enterprise Server 12 SP3-LTSS", product_identification_helper: { cpe: "cpe:/o:suse:sles-ltss:12:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 12 SP3-BCL", product: { name: "SUSE Linux Enterprise Server 12 SP3-BCL", product_id: "SUSE Linux Enterprise Server 12 SP3-BCL", product_identification_helper: { cpe: "cpe:/o:suse:sles-bcl:12:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 12 SP4-LTSS", product: { name: "SUSE Linux Enterprise Server 12 SP4-LTSS", product_id: "SUSE Linux Enterprise Server 12 SP4-LTSS", product_identification_helper: { cpe: "cpe:/o:suse:sles-ltss:12:sp4", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 12 SP5", product: { name: "SUSE Linux Enterprise Server 12 SP5", product_id: "SUSE Linux Enterprise Server 12 SP5", product_identification_helper: { cpe: "cpe:/o:suse:sles:12:sp5", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server for SAP Applications 12 SP5", product: { name: "SUSE Linux Enterprise Server for SAP Applications 12 SP5", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP5", product_identification_helper: { cpe: "cpe:/o:suse:sles_sap:12:sp5", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.x86_64 as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.x86_64", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64 as component of HPE Helion OpenStack 8", product_id: "HPE Helion OpenStack 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", relates_to_product_reference: "HPE Helion OpenStack 8", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.x86_64 as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64 as component of SUSE OpenStack Cloud 8", product_id: "SUSE OpenStack Cloud 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 8", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.x86_64 as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:libSDL-1_2-0-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64 as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 8", product_id: "SUSE OpenStack Cloud Crowbar 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 8", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:libSDL-1_2-0-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP3", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP4", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-15.17.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5", product_id: "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.aarch64", }, product_reference: "libSDL-devel-1.2.15-15.17.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Software Development Kit 12 SP5", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-15.17.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP5", product_id: "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.ppc64le", }, product_reference: "libSDL-devel-1.2.15-15.17.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Software Development Kit 12 SP5", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-15.17.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP5", product_id: "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.s390x", }, product_reference: "libSDL-devel-1.2.15-15.17.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Software Development Kit 12 SP5", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-15.17.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5", product_id: "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-devel-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Software Development Kit 12 SP5", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL", product_id: "SUSE Linux Enterprise Server 12 SP2-BCL:libSDL-1_2-0-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP2-BCL", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL", product_id: "SUSE Linux Enterprise Server 12 SP2-BCL:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP2-BCL", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS", product_id: "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.aarch64", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3-LTSS", product_id: "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.s390x as component of SUSE Linux Enterprise Server 12 SP3-LTSS", product_id: "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.s390x", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS", product_id: "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x as component of SUSE Linux Enterprise Server 12 SP3-LTSS", product_id: "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", }, product_reference: "libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS", product_id: "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL", product_id: "SUSE Linux Enterprise Server 12 SP3-BCL:libSDL-1_2-0-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3-BCL", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL", product_id: "SUSE Linux Enterprise Server 12 SP3-BCL:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP3-BCL", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS", product_id: "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.aarch64", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4-LTSS", product_id: "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.s390x as component of SUSE Linux Enterprise Server 12 SP4-LTSS", product_id: "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.s390x", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS", product_id: "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x as component of SUSE Linux Enterprise Server 12 SP4-LTSS", product_id: "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", }, product_reference: "libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS", product_id: "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP4-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5", product_id: "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.aarch64", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP5", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5", product_id: "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP5", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.s390x as component of SUSE Linux Enterprise Server 12 SP5", product_id: "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.s390x", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP5", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5", product_id: "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP5", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x as component of SUSE Linux Enterprise Server 12 SP5", product_id: "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", }, product_reference: "libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP5", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5", product_id: "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 12 SP5", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.aarch64", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP5", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP5", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.s390x", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP5", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-15.17.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP5", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", }, product_reference: "libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP5", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5", product_id: "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", }, product_reference: "libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 12 SP5", }, ], }, vulnerabilities: [ { cve: "CVE-2020-14409", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-14409", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "HPE Helion OpenStack 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 9:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 9:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-14409", url: "https://www.suse.com/security/cve/CVE-2020-14409", }, { category: "external", summary: "SUSE Bug 1181202 for CVE-2020-14409", url: "https://bugzilla.suse.com/1181202", }, { category: "external", summary: "SUSE Bug 1200204 for CVE-2020-14409", url: "https://bugzilla.suse.com/1200204", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "HPE Helion OpenStack 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 9:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 9:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "HPE Helion OpenStack 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "HPE Helion OpenStack 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 9:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 9:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-04-22T14:11:15Z", details: "important", }, ], title: "CVE-2020-14409", }, { cve: "CVE-2020-14410", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-14410", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 2.0.12 has a heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP file.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "HPE Helion OpenStack 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 9:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 9:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-14410", url: "https://www.suse.com/security/cve/CVE-2020-14410", }, { category: "external", summary: "SUSE Bug 1181201 for CVE-2020-14410", url: "https://bugzilla.suse.com/1181201", }, { category: "external", summary: "SUSE Bug 1200204 for CVE-2020-14410", url: "https://bugzilla.suse.com/1200204", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "HPE Helion OpenStack 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 9:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 9:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "HPE Helion OpenStack 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "HPE Helion OpenStack 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 9:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 9:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-04-22T14:11:15Z", details: "important", }, ], title: "CVE-2020-14410", }, { cve: "CVE-2021-33657", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-33657", }, ], notes: [ { category: "general", text: "There is a heap overflow problem in video/SDL_pixels.c in SDL (Simple DirectMedia Layer) 2.x to 2.0.18 versions. By crafting a malicious .BMP file, an attacker can cause the application using this library to crash, denial of service or Code execution.", title: "CVE description", }, ], product_status: { recommended: [ "HPE Helion OpenStack 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "HPE Helion OpenStack 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 9:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 9:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-33657", url: "https://www.suse.com/security/cve/CVE-2021-33657", }, { category: "external", summary: "SUSE Bug 1198001 for CVE-2021-33657", url: "https://bugzilla.suse.com/1198001", }, { category: "external", summary: "SUSE Bug 1199105 for CVE-2021-33657", url: "https://bugzilla.suse.com/1199105", }, { category: "external", summary: "SUSE Bug 1200204 for CVE-2021-33657", url: "https://bugzilla.suse.com/1200204", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "HPE Helion OpenStack 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "HPE Helion OpenStack 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 9:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 9:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "HPE Helion OpenStack 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "HPE Helion OpenStack 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-BCL:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP3-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP4-LTSS:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP5:libSDL-devel-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 9:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud 9:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 8:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:libSDL-1_2-0-1.2.15-15.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:libSDL-1_2-0-32bit-1.2.15-15.17.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-04-22T14:11:15Z", details: "important", }, ], title: "CVE-2021-33657", }, ], }
suse-su-2022:14943-1
Vulnerability from csaf_suse
Published
2022-04-22 14:09
Modified
2022-04-22 14:09
Summary
Security update for SDL
Notes
Title of the patch
Security update for SDL
Description of the patch
This update for SDL fixes the following issues:
- CVE-2020-14410: Fixed a heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c (bsc#1181201).
- CVE-2019-7637: Fixed a heap-based buffer overflow in SDL_FillRect in video/SDL_surface.c (bsc#1124825).
- CVE-2021-33657: Fix a buffer overflow when parsing a crafted BMP image (bsc#1198001).
- CVE-2020-14409: Fixed an integer overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c (bsc#1181202).
Patchnames
sleposp3-SDL-14943,slessp4-SDL-14943
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for SDL", title: "Title of the patch", }, { category: "description", text: "This update for SDL fixes the following issues:\n\n- CVE-2020-14410: Fixed a heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c (bsc#1181201).\n- CVE-2019-7637: Fixed a heap-based buffer overflow in SDL_FillRect in video/SDL_surface.c (bsc#1124825).\n- CVE-2021-33657: Fix a buffer overflow when parsing a crafted BMP image (bsc#1198001).\n- CVE-2020-14409: Fixed an integer overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c (bsc#1181202).\n", title: "Description of the patch", }, { category: "details", text: "sleposp3-SDL-14943,slessp4-SDL-14943", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_14943-1.json", }, { category: "self", summary: "URL for SUSE-SU-2022:14943-1", url: "https://www.suse.com/support/update/announcement/2022/suse-su-202214943-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2022:14943-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010802.html", }, { category: "self", summary: "SUSE Bug 1124825", url: "https://bugzilla.suse.com/1124825", }, { category: "self", summary: "SUSE Bug 1181201", url: "https://bugzilla.suse.com/1181201", }, { category: "self", summary: "SUSE Bug 1181202", url: "https://bugzilla.suse.com/1181202", }, { category: "self", summary: "SUSE Bug 1198001", url: "https://bugzilla.suse.com/1198001", }, { category: "self", summary: "SUSE CVE CVE-2019-7637 page", url: "https://www.suse.com/security/cve/CVE-2019-7637/", }, { category: "self", summary: "SUSE CVE CVE-2020-14409 page", url: "https://www.suse.com/security/cve/CVE-2020-14409/", }, { category: "self", summary: "SUSE CVE CVE-2020-14410 page", url: "https://www.suse.com/security/cve/CVE-2020-14410/", }, { category: "self", summary: "SUSE CVE CVE-2021-33657 page", url: "https://www.suse.com/security/cve/CVE-2021-33657/", }, ], title: "Security update for SDL", tracking: { current_release_date: "2022-04-22T14:09:44Z", generator: { date: "2022-04-22T14:09:44Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2022:14943-1", initial_release_date: "2022-04-22T14:09:44Z", revision_history: [ { date: "2022-04-22T14:09:44Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "SDL-1.2.13-106.21.1.i586", product: { name: "SDL-1.2.13-106.21.1.i586", product_id: "SDL-1.2.13-106.21.1.i586", }, }, ], category: "architecture", name: "i586", }, { branches: [ { category: "product_version", name: "SDL-1.2.13-106.21.1.ppc64", product: { name: "SDL-1.2.13-106.21.1.ppc64", product_id: "SDL-1.2.13-106.21.1.ppc64", }, }, { category: "product_version", name: "SDL-32bit-1.2.13-106.21.1.ppc64", product: { name: "SDL-32bit-1.2.13-106.21.1.ppc64", product_id: "SDL-32bit-1.2.13-106.21.1.ppc64", }, }, ], category: "architecture", name: "ppc64", }, { branches: [ { category: "product_version", name: "SDL-1.2.13-106.21.1.s390x", product: { name: "SDL-1.2.13-106.21.1.s390x", product_id: "SDL-1.2.13-106.21.1.s390x", }, }, { category: "product_version", name: "SDL-32bit-1.2.13-106.21.1.s390x", product: { name: "SDL-32bit-1.2.13-106.21.1.s390x", product_id: "SDL-32bit-1.2.13-106.21.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "SDL-1.2.13-106.21.1.x86_64", product: { name: "SDL-1.2.13-106.21.1.x86_64", product_id: "SDL-1.2.13-106.21.1.x86_64", }, }, { category: "product_version", name: "SDL-32bit-1.2.13-106.21.1.x86_64", product: { name: "SDL-32bit-1.2.13-106.21.1.x86_64", product_id: "SDL-32bit-1.2.13-106.21.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Linux Enterprise Point of Sale 11 SP3", product: { name: "SUSE Linux Enterprise Point of Sale 11 SP3", product_id: "SUSE Linux Enterprise Point of Sale 11 SP3", product_identification_helper: { cpe: "cpe:/o:suse:sle-pos:11:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 11 SP4-LTSS", product: { name: "SUSE Linux Enterprise Server 11 SP4-LTSS", product_id: "SUSE Linux Enterprise Server 11 SP4-LTSS", product_identification_helper: { cpe: "cpe:/o:suse:suse_sles:11:sp4", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "SDL-1.2.13-106.21.1.i586 as component of SUSE Linux Enterprise Point of Sale 11 SP3", product_id: "SUSE Linux Enterprise Point of Sale 11 SP3:SDL-1.2.13-106.21.1.i586", }, product_reference: "SDL-1.2.13-106.21.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Point of Sale 11 SP3", }, { category: "default_component_of", full_product_name: { name: "SDL-1.2.13-106.21.1.i586 as component of SUSE Linux Enterprise Server 11 SP4-LTSS", product_id: "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.i586", }, product_reference: "SDL-1.2.13-106.21.1.i586", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP4-LTSS", }, { category: "default_component_of", full_product_name: { name: "SDL-1.2.13-106.21.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS", product_id: "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.ppc64", }, product_reference: "SDL-1.2.13-106.21.1.ppc64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP4-LTSS", }, { category: "default_component_of", full_product_name: { name: "SDL-1.2.13-106.21.1.s390x as component of SUSE Linux Enterprise Server 11 SP4-LTSS", product_id: "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.s390x", }, product_reference: "SDL-1.2.13-106.21.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP4-LTSS", }, { category: "default_component_of", full_product_name: { name: "SDL-1.2.13-106.21.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS", product_id: "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.x86_64", }, product_reference: "SDL-1.2.13-106.21.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP4-LTSS", }, { category: "default_component_of", full_product_name: { name: "SDL-32bit-1.2.13-106.21.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS", product_id: "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.ppc64", }, product_reference: "SDL-32bit-1.2.13-106.21.1.ppc64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP4-LTSS", }, { category: "default_component_of", full_product_name: { name: "SDL-32bit-1.2.13-106.21.1.s390x as component of SUSE Linux Enterprise Server 11 SP4-LTSS", product_id: "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.s390x", }, product_reference: "SDL-32bit-1.2.13-106.21.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP4-LTSS", }, { category: "default_component_of", full_product_name: { name: "SDL-32bit-1.2.13-106.21.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4-LTSS", product_id: "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.x86_64", }, product_reference: "SDL-32bit-1.2.13-106.21.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 11 SP4-LTSS", }, ], }, vulnerabilities: [ { cve: "CVE-2019-7637", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-7637", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer overflow in SDL_FillRect in video/SDL_surface.c.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Point of Sale 11 SP3:SDL-1.2.13-106.21.1.i586", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.i586", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.s390x", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.s390x", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-7637", url: "https://www.suse.com/security/cve/CVE-2019-7637", }, { category: "external", summary: "SUSE Bug 1124825 for CVE-2019-7637", url: "https://bugzilla.suse.com/1124825", }, { category: "external", summary: "SUSE Bug 1134135 for CVE-2019-7637", url: "https://bugzilla.suse.com/1134135", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Point of Sale 11 SP3:SDL-1.2.13-106.21.1.i586", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.i586", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.s390x", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.s390x", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L", version: "3.0", }, products: [ "SUSE Linux Enterprise Point of Sale 11 SP3:SDL-1.2.13-106.21.1.i586", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.i586", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.s390x", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.s390x", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-04-22T14:09:44Z", details: "moderate", }, ], title: "CVE-2019-7637", }, { cve: "CVE-2020-14409", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-14409", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Point of Sale 11 SP3:SDL-1.2.13-106.21.1.i586", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.i586", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.s390x", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.s390x", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-14409", url: "https://www.suse.com/security/cve/CVE-2020-14409", }, { category: "external", summary: "SUSE Bug 1181202 for CVE-2020-14409", url: "https://bugzilla.suse.com/1181202", }, { category: "external", summary: "SUSE Bug 1200204 for CVE-2020-14409", url: "https://bugzilla.suse.com/1200204", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Point of Sale 11 SP3:SDL-1.2.13-106.21.1.i586", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.i586", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.s390x", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.s390x", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Point of Sale 11 SP3:SDL-1.2.13-106.21.1.i586", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.i586", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.s390x", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.s390x", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-04-22T14:09:44Z", details: "important", }, ], title: "CVE-2020-14409", }, { cve: "CVE-2020-14410", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-14410", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 2.0.12 has a heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Point of Sale 11 SP3:SDL-1.2.13-106.21.1.i586", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.i586", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.s390x", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.s390x", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-14410", url: "https://www.suse.com/security/cve/CVE-2020-14410", }, { category: "external", summary: "SUSE Bug 1181201 for CVE-2020-14410", url: "https://bugzilla.suse.com/1181201", }, { category: "external", summary: "SUSE Bug 1200204 for CVE-2020-14410", url: "https://bugzilla.suse.com/1200204", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Point of Sale 11 SP3:SDL-1.2.13-106.21.1.i586", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.i586", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.s390x", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.s390x", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Point of Sale 11 SP3:SDL-1.2.13-106.21.1.i586", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.i586", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.s390x", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.s390x", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-04-22T14:09:44Z", details: "important", }, ], title: "CVE-2020-14410", }, { cve: "CVE-2021-33657", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-33657", }, ], notes: [ { category: "general", text: "There is a heap overflow problem in video/SDL_pixels.c in SDL (Simple DirectMedia Layer) 2.x to 2.0.18 versions. By crafting a malicious .BMP file, an attacker can cause the application using this library to crash, denial of service or Code execution.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Point of Sale 11 SP3:SDL-1.2.13-106.21.1.i586", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.i586", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.s390x", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.s390x", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-33657", url: "https://www.suse.com/security/cve/CVE-2021-33657", }, { category: "external", summary: "SUSE Bug 1198001 for CVE-2021-33657", url: "https://bugzilla.suse.com/1198001", }, { category: "external", summary: "SUSE Bug 1199105 for CVE-2021-33657", url: "https://bugzilla.suse.com/1199105", }, { category: "external", summary: "SUSE Bug 1200204 for CVE-2021-33657", url: "https://bugzilla.suse.com/1200204", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Point of Sale 11 SP3:SDL-1.2.13-106.21.1.i586", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.i586", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.s390x", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.s390x", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Point of Sale 11 SP3:SDL-1.2.13-106.21.1.i586", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.i586", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.s390x", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-1.2.13-106.21.1.x86_64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.ppc64", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.s390x", "SUSE Linux Enterprise Server 11 SP4-LTSS:SDL-32bit-1.2.13-106.21.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-04-22T14:09:44Z", details: "important", }, ], title: "CVE-2021-33657", }, ], }
suse-su-2022:1273-1
Vulnerability from csaf_suse
Published
2022-04-20 07:10
Modified
2022-04-20 07:10
Summary
Security update for SDL
Notes
Title of the patch
Security update for SDL
Description of the patch
This update for SDL fixes the following issues:
- CVE-2020-14409: Fixed an integer overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c. (bsc#1181202)
- CVE-2020-14410: Fixed a heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c. (bsc#1181201)
- CVE-2021-33657: Fixed a Heap overflow problem in video/SDL_pixels.c. (bsc#1198001)
Patchnames
SUSE-2022-1273,SUSE-SLE-Module-Desktop-Applications-15-SP3-2022-1273,SUSE-SLE-Module-Desktop-Applications-15-SP4-2022-1273,SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2022-1273,SUSE-SLE-Product-HPC-15-2022-1273,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2022-1273,SUSE-SLE-Product-HPC-15-SP1-LTSS-2022-1273,SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-1273,SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-1273,SUSE-SLE-Product-RT-15-SP2-2022-1273,SUSE-SLE-Product-SLES-15-2022-1273,SUSE-SLE-Product-SLES-15-SP1-BCL-2022-1273,SUSE-SLE-Product-SLES-15-SP1-LTSS-2022-1273,SUSE-SLE-Product-SLES-15-SP2-BCL-2022-1273,SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-1273,SUSE-SLE-Product-SLES_SAP-15-2022-1273,SUSE-SLE-Product-SLES_SAP-15-SP1-2022-1273,SUSE-SLE-Product-SLES_SAP-15-SP2-2022-1273,SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-1273,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-1273,SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-1273,SUSE-Storage-6-2022-1273,SUSE-Storage-7-2022-1273,openSUSE-SLE-15.3-2022-1273,openSUSE-SLE-15.4-2022-1273
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for SDL", title: "Title of the patch", }, { category: "description", text: "This update for SDL fixes the following issues:\n\n- CVE-2020-14409: Fixed an integer overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c. (bsc#1181202)\n- CVE-2020-14410: Fixed a heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c. (bsc#1181201)\n- CVE-2021-33657: Fixed a Heap overflow problem in video/SDL_pixels.c. (bsc#1198001)\n ", title: "Description of the patch", }, { category: "details", text: "SUSE-2022-1273,SUSE-SLE-Module-Desktop-Applications-15-SP3-2022-1273,SUSE-SLE-Module-Desktop-Applications-15-SP4-2022-1273,SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2022-1273,SUSE-SLE-Product-HPC-15-2022-1273,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2022-1273,SUSE-SLE-Product-HPC-15-SP1-LTSS-2022-1273,SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-1273,SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-1273,SUSE-SLE-Product-RT-15-SP2-2022-1273,SUSE-SLE-Product-SLES-15-2022-1273,SUSE-SLE-Product-SLES-15-SP1-BCL-2022-1273,SUSE-SLE-Product-SLES-15-SP1-LTSS-2022-1273,SUSE-SLE-Product-SLES-15-SP2-BCL-2022-1273,SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-1273,SUSE-SLE-Product-SLES_SAP-15-2022-1273,SUSE-SLE-Product-SLES_SAP-15-SP1-2022-1273,SUSE-SLE-Product-SLES_SAP-15-SP2-2022-1273,SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-1273,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-1273,SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-1273,SUSE-Storage-6-2022-1273,SUSE-Storage-7-2022-1273,openSUSE-SLE-15.3-2022-1273,openSUSE-SLE-15.4-2022-1273", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_1273-1.json", }, { category: "self", summary: "URL for SUSE-SU-2022:1273-1", url: "https://www.suse.com/support/update/announcement/2022/suse-su-20221273-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2022:1273-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2022-April/010769.html", }, { category: "self", summary: "SUSE Bug 1181201", url: "https://bugzilla.suse.com/1181201", }, { category: "self", summary: "SUSE Bug 1181202", url: "https://bugzilla.suse.com/1181202", }, { category: "self", summary: "SUSE Bug 1198001", url: "https://bugzilla.suse.com/1198001", }, { category: "self", summary: "SUSE CVE CVE-2020-14409 page", url: "https://www.suse.com/security/cve/CVE-2020-14409/", }, { category: "self", summary: "SUSE CVE CVE-2020-14410 page", url: "https://www.suse.com/security/cve/CVE-2020-14410/", }, { category: "self", summary: "SUSE CVE CVE-2021-33657 page", url: "https://www.suse.com/security/cve/CVE-2021-33657/", }, ], title: "Security update for SDL", tracking: { current_release_date: "2022-04-20T07:10:05Z", generator: { date: "2022-04-20T07:10:05Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2022:1273-1", initial_release_date: "2022-04-20T07:10:05Z", revision_history: [ { date: "2022-04-20T07:10:05Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", product: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", product_id: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", }, }, { category: "product_version", name: "libSDL-devel-1.2.15-150000.3.19.1.aarch64", product: { name: "libSDL-devel-1.2.15-150000.3.19.1.aarch64", product_id: "libSDL-devel-1.2.15-150000.3.19.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "libSDL-1_2-0-64bit-1.2.15-150000.3.19.1.aarch64_ilp32", product: { name: "libSDL-1_2-0-64bit-1.2.15-150000.3.19.1.aarch64_ilp32", product_id: "libSDL-1_2-0-64bit-1.2.15-150000.3.19.1.aarch64_ilp32", }, }, { category: "product_version", name: "libSDL-devel-64bit-1.2.15-150000.3.19.1.aarch64_ilp32", product: { name: "libSDL-devel-64bit-1.2.15-150000.3.19.1.aarch64_ilp32", product_id: "libSDL-devel-64bit-1.2.15-150000.3.19.1.aarch64_ilp32", }, }, ], category: "architecture", name: "aarch64_ilp32", }, { branches: [ { category: "product_version", name: "libSDL-1_2-0-1.2.15-150000.3.19.1.i586", product: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.i586", product_id: "libSDL-1_2-0-1.2.15-150000.3.19.1.i586", }, }, { category: "product_version", name: "libSDL-devel-1.2.15-150000.3.19.1.i586", product: { name: "libSDL-devel-1.2.15-150000.3.19.1.i586", product_id: "libSDL-devel-1.2.15-150000.3.19.1.i586", }, }, ], category: "architecture", name: "i586", }, { branches: [ { category: "product_version", name: "libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", product: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", product_id: "libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", }, }, { category: "product_version", name: "libSDL-devel-1.2.15-150000.3.19.1.ppc64le", product: { name: "libSDL-devel-1.2.15-150000.3.19.1.ppc64le", product_id: "libSDL-devel-1.2.15-150000.3.19.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", product: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", product_id: "libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", }, }, { category: "product_version", name: "libSDL-devel-1.2.15-150000.3.19.1.s390x", product: { name: "libSDL-devel-1.2.15-150000.3.19.1.s390x", product_id: "libSDL-devel-1.2.15-150000.3.19.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", product: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", product_id: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", }, }, { category: "product_version", name: "libSDL-1_2-0-32bit-1.2.15-150000.3.19.1.x86_64", product: { name: "libSDL-1_2-0-32bit-1.2.15-150000.3.19.1.x86_64", product_id: "libSDL-1_2-0-32bit-1.2.15-150000.3.19.1.x86_64", }, }, { category: "product_version", name: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", product: { name: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", product_id: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", }, }, { category: "product_version", name: "libSDL-devel-32bit-1.2.15-150000.3.19.1.x86_64", product: { name: "libSDL-devel-32bit-1.2.15-150000.3.19.1.x86_64", product_id: "libSDL-devel-32bit-1.2.15-150000.3.19.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3", product: { name: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3", product_id: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-desktop-applications:15:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Module for Package Hub 15 SP3", product: { name: "SUSE Linux Enterprise Module for Package Hub 15 SP3", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP3", product_identification_helper: { cpe: "cpe:/o:suse:packagehub:15:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", product: { name: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", product_identification_helper: { cpe: "cpe:/o:suse:sle_hpc-espos:15", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise High Performance Computing 15-LTSS", product: { name: "SUSE Linux Enterprise High Performance Computing 15-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15-LTSS", product_identification_helper: { cpe: "cpe:/o:suse:sle_hpc-ltss:15", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", product: { name: "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", product_identification_helper: { cpe: "cpe:/o:suse:sle_hpc-espos:15:sp1", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", product: { name: "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", product_identification_helper: { cpe: "cpe:/o:suse:sle_hpc-ltss:15:sp1", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS", product: { name: "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS", product_identification_helper: { cpe: "cpe:/o:suse:sle_hpc-espos:15:sp2", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS", product: { name: "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS", product_identification_helper: { cpe: "cpe:/o:suse:sle_hpc-ltss:15:sp2", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Real Time 15 SP2", product: { name: "SUSE Linux Enterprise Real Time 15 SP2", product_id: "SUSE Linux Enterprise Real Time 15 SP2", product_identification_helper: { cpe: "cpe:/o:suse:sle_rt:15:sp2", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 15-LTSS", product: { name: "SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS", product_identification_helper: { cpe: "cpe:/o:suse:sles-ltss:15", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 15 SP1-BCL", product: { name: "SUSE Linux Enterprise Server 15 SP1-BCL", product_id: "SUSE Linux Enterprise Server 15 SP1-BCL", product_identification_helper: { cpe: "cpe:/o:suse:sles_bcl:15:sp1", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 15 SP1-LTSS", product: { name: "SUSE Linux Enterprise Server 15 SP1-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP1-LTSS", product_identification_helper: { cpe: "cpe:/o:suse:sles-ltss:15:sp1", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 15 SP2-BCL", product: { name: "SUSE Linux Enterprise Server 15 SP2-BCL", product_id: "SUSE Linux Enterprise Server 15 SP2-BCL", product_identification_helper: { cpe: "cpe:/o:suse:sles_bcl:15:sp2", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 15 SP2-LTSS", product: { name: "SUSE Linux Enterprise Server 15 SP2-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP2-LTSS", product_identification_helper: { cpe: "cpe:/o:suse:sles-ltss:15:sp2", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server for SAP Applications 15", product: { name: "SUSE Linux Enterprise Server for SAP Applications 15", product_id: "SUSE Linux Enterprise Server for SAP Applications 15", product_identification_helper: { cpe: "cpe:/o:suse:sles_sap:15", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server for SAP Applications 15 SP1", product: { name: "SUSE Linux Enterprise Server for SAP Applications 15 SP1", product_id: "SUSE Linux Enterprise Server for SAP Applications 15 SP1", product_identification_helper: { cpe: "cpe:/o:suse:sles_sap:15:sp1", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server for SAP Applications 15 SP2", product: { name: "SUSE Linux Enterprise Server for SAP Applications 15 SP2", product_id: "SUSE Linux Enterprise Server for SAP Applications 15 SP2", product_identification_helper: { cpe: "cpe:/o:suse:sles_sap:15:sp2", }, }, }, { category: "product_name", name: "SUSE Manager Proxy 4.1", product: { name: "SUSE Manager Proxy 4.1", product_id: "SUSE Manager Proxy 4.1", product_identification_helper: { cpe: "cpe:/o:suse:suse-manager-proxy:4.1", }, }, }, { category: "product_name", name: "SUSE Manager Retail Branch Server 4.1", product: { name: "SUSE Manager Retail Branch Server 4.1", product_id: "SUSE Manager Retail Branch Server 4.1", product_identification_helper: { cpe: "cpe:/o:suse:suse-manager-retail-branch-server:4.1", }, }, }, { category: "product_name", name: "SUSE Manager Server 4.1", product: { name: "SUSE Manager Server 4.1", product_id: "SUSE Manager Server 4.1", product_identification_helper: { cpe: "cpe:/o:suse:suse-manager-server:4.1", }, }, }, { category: "product_name", name: "SUSE Enterprise Storage 6", product: { name: "SUSE Enterprise Storage 6", product_id: "SUSE Enterprise Storage 6", product_identification_helper: { cpe: "cpe:/o:suse:ses:6", }, }, }, { category: "product_name", name: "SUSE Enterprise Storage 7", product: { name: "SUSE Enterprise Storage 7", product_id: "SUSE Enterprise Storage 7", product_identification_helper: { cpe: "cpe:/o:suse:ses:7", }, }, }, { category: "product_name", name: "openSUSE Leap 15.3", product: { name: "openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3", product_identification_helper: { cpe: "cpe:/o:opensuse:leap:15.3", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3", product_id: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3", product_id: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.s390x as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3", product_id: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3", product_id: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.aarch64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3", product_id: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.ppc64le as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3", product_id: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.s390x as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3", product_id: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.s390x", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3", product_id: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP3", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP3", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP3", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise Real Time 15 SP2", product_id: "SUSE Linux Enterprise Real Time 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Real Time 15 SP2", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise Real Time 15 SP2", product_id: "SUSE Linux Enterprise Real Time 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Real Time 15 SP2", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL", product_id: "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP1-BCL", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL", product_id: "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL-devel-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP1-BCL", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP1-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP1-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP1-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP1-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP1-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP1-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP1-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP1-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL", product_id: "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP2-BCL", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL", product_id: "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL-devel-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP2-BCL", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP2-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP2-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP2-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP2-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP2-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP2-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP2-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP2-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15", product_id: "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15", product_id: "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15", product_id: "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15", product_id: "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-devel-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1", product_id: "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15 SP1", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1", product_id: "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15 SP1", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1", product_id: "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15 SP1", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1", product_id: "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15 SP1", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2", product_id: "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15 SP2", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2", product_id: "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15 SP2", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2", product_id: "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15 SP2", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2", product_id: "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15 SP2", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64 as component of SUSE Manager Proxy 4.1", product_id: "SUSE Manager Proxy 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Manager Proxy 4.1", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.x86_64 as component of SUSE Manager Proxy 4.1", product_id: "SUSE Manager Proxy 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Manager Proxy 4.1", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1", product_id: "SUSE Manager Retail Branch Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Manager Retail Branch Server 4.1", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1", product_id: "SUSE Manager Retail Branch Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Manager Retail Branch Server 4.1", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le as component of SUSE Manager Server 4.1", product_id: "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", relates_to_product_reference: "SUSE Manager Server 4.1", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.s390x as component of SUSE Manager Server 4.1", product_id: "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", relates_to_product_reference: "SUSE Manager Server 4.1", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64 as component of SUSE Manager Server 4.1", product_id: "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Manager Server 4.1", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.ppc64le as component of SUSE Manager Server 4.1", product_id: "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.ppc64le", relates_to_product_reference: "SUSE Manager Server 4.1", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.s390x as component of SUSE Manager Server 4.1", product_id: "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.s390x", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.s390x", relates_to_product_reference: "SUSE Manager Server 4.1", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.x86_64 as component of SUSE Manager Server 4.1", product_id: "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Manager Server 4.1", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64 as component of SUSE Enterprise Storage 6", product_id: "SUSE Enterprise Storage 6:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Enterprise Storage 6", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64 as component of SUSE Enterprise Storage 6", product_id: "SUSE Enterprise Storage 6:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Enterprise Storage 6", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.aarch64 as component of SUSE Enterprise Storage 6", product_id: "SUSE Enterprise Storage 6:libSDL-devel-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Enterprise Storage 6", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.x86_64 as component of SUSE Enterprise Storage 6", product_id: "SUSE Enterprise Storage 6:libSDL-devel-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Enterprise Storage 6", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64 as component of SUSE Enterprise Storage 7", product_id: "SUSE Enterprise Storage 7:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Enterprise Storage 7", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64 as component of SUSE Enterprise Storage 7", product_id: "SUSE Enterprise Storage 7:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Enterprise Storage 7", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.aarch64 as component of SUSE Enterprise Storage 7", product_id: "SUSE Enterprise Storage 7:libSDL-devel-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "SUSE Enterprise Storage 7", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.x86_64 as component of SUSE Enterprise Storage 7", product_id: "SUSE Enterprise Storage 7:libSDL-devel-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "SUSE Enterprise Storage 7", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL-1_2-0-32bit-1.2.15-150000.3.19.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL-1_2-0-32bit-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-1_2-0-32bit-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.aarch64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.s390x", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-1.2.15-150000.3.19.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-devel-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL-devel-32bit-1.2.15-150000.3.19.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL-devel-32bit-1.2.15-150000.3.19.1.x86_64", }, product_reference: "libSDL-devel-32bit-1.2.15-150000.3.19.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, ], }, vulnerabilities: [ { cve: "CVE-2020-14409", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-14409", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Enterprise Storage 6:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 6:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 6:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 6:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 7:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 7:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 7:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 7:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Real Time 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Real Time 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Proxy 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Proxy 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-1_2-0-32bit-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.s390x", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-devel-32bit-1.2.15-150000.3.19.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-14409", url: "https://www.suse.com/security/cve/CVE-2020-14409", }, { category: "external", summary: "SUSE Bug 1181202 for CVE-2020-14409", url: "https://bugzilla.suse.com/1181202", }, { category: "external", summary: "SUSE Bug 1200204 for CVE-2020-14409", url: "https://bugzilla.suse.com/1200204", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Enterprise Storage 6:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 6:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 6:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 6:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 7:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 7:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 7:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 7:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Real Time 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Real Time 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Proxy 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Proxy 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-1_2-0-32bit-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.s390x", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-devel-32bit-1.2.15-150000.3.19.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Enterprise Storage 6:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 6:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 6:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 6:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 7:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 7:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 7:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 7:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Real Time 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Real Time 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Proxy 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Proxy 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-1_2-0-32bit-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.s390x", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-devel-32bit-1.2.15-150000.3.19.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-04-20T07:10:05Z", details: "important", }, ], title: "CVE-2020-14409", }, { cve: "CVE-2020-14410", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-14410", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 2.0.12 has a heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Enterprise Storage 6:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 6:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 6:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 6:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 7:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 7:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 7:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 7:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Real Time 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Real Time 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Proxy 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Proxy 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-1_2-0-32bit-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.s390x", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-devel-32bit-1.2.15-150000.3.19.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-14410", url: "https://www.suse.com/security/cve/CVE-2020-14410", }, { category: "external", summary: "SUSE Bug 1181201 for CVE-2020-14410", url: "https://bugzilla.suse.com/1181201", }, { category: "external", summary: "SUSE Bug 1200204 for CVE-2020-14410", url: "https://bugzilla.suse.com/1200204", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Enterprise Storage 6:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 6:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 6:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 6:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 7:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 7:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 7:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 7:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Real Time 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Real Time 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Proxy 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Proxy 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-1_2-0-32bit-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.s390x", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-devel-32bit-1.2.15-150000.3.19.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Enterprise Storage 6:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 6:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 6:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 6:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 7:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 7:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 7:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 7:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Real Time 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Real Time 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Proxy 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Proxy 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-1_2-0-32bit-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.s390x", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-devel-32bit-1.2.15-150000.3.19.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-04-20T07:10:05Z", details: "important", }, ], title: "CVE-2020-14410", }, { cve: "CVE-2021-33657", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-33657", }, ], notes: [ { category: "general", text: "There is a heap overflow problem in video/SDL_pixels.c in SDL (Simple DirectMedia Layer) 2.x to 2.0.18 versions. By crafting a malicious .BMP file, an attacker can cause the application using this library to crash, denial of service or Code execution.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Enterprise Storage 6:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 6:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 6:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 6:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 7:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 7:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 7:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 7:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Real Time 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Real Time 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Proxy 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Proxy 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-1_2-0-32bit-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.s390x", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-devel-32bit-1.2.15-150000.3.19.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-33657", url: "https://www.suse.com/security/cve/CVE-2021-33657", }, { category: "external", summary: "SUSE Bug 1198001 for CVE-2021-33657", url: "https://bugzilla.suse.com/1198001", }, { category: "external", summary: "SUSE Bug 1199105 for CVE-2021-33657", url: "https://bugzilla.suse.com/1199105", }, { category: "external", summary: "SUSE Bug 1200204 for CVE-2021-33657", url: "https://bugzilla.suse.com/1200204", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Enterprise Storage 6:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 6:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 6:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 6:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 7:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 7:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 7:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 7:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Real Time 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Real Time 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Proxy 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Proxy 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-1_2-0-32bit-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.s390x", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-devel-32bit-1.2.15-150000.3.19.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Enterprise Storage 6:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 6:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 6:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 6:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 7:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 7:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Enterprise Storage 7:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Enterprise Storage 7:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Real Time 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Real Time 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Proxy 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Proxy 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "SUSE Manager Server 4.1:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.s390x", "SUSE Manager Server 4.1:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.aarch64", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.ppc64le", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.s390x", "openSUSE Leap 15.3:libSDL-1_2-0-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-1_2-0-32bit-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.aarch64", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.ppc64le", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.s390x", "openSUSE Leap 15.3:libSDL-devel-1.2.15-150000.3.19.1.x86_64", "openSUSE Leap 15.3:libSDL-devel-32bit-1.2.15-150000.3.19.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-04-20T07:10:05Z", details: "important", }, ], title: "CVE-2021-33657", }, ], }
suse-su-2022:0104-1
Vulnerability from csaf_suse
Published
2022-01-18 08:37
Modified
2022-01-18 08:37
Summary
Security update for SDL2
Notes
Title of the patch
Security update for SDL2
Description of the patch
This update for SDL2 fixes the following issues:
- CVE-2020-14409: Fixed Integer Overflow resulting in heap corruption in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP (bsc#1181202).
- CVE-2020-14410: Fixed heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP (bsc#1181201).
Patchnames
SUSE-2022-104,SUSE-SLE-Module-Desktop-Applications-15-SP3-2022-104,SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2022-104,SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-104,SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-104,SUSE-SLE-Product-SLES-15-SP2-BCL-2022-104,SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-104,SUSE-SLE-Product-SLES_SAP-15-SP2-2022-104,SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-104,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-104,SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-104,SUSE-Storage-7-2022-104
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for SDL2", title: "Title of the patch", }, { category: "description", text: "This update for SDL2 fixes the following issues:\n\n- CVE-2020-14409: Fixed Integer Overflow resulting in heap corruption in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP (bsc#1181202).\n- CVE-2020-14410: Fixed heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP (bsc#1181201).\n", title: "Description of the patch", }, { category: "details", text: "SUSE-2022-104,SUSE-SLE-Module-Desktop-Applications-15-SP3-2022-104,SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2022-104,SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-104,SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-104,SUSE-SLE-Product-SLES-15-SP2-BCL-2022-104,SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-104,SUSE-SLE-Product-SLES_SAP-15-SP2-2022-104,SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-104,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-104,SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-104,SUSE-Storage-7-2022-104", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_0104-1.json", }, { category: "self", summary: "URL for SUSE-SU-2022:0104-1", url: "https://www.suse.com/support/update/announcement/2022/suse-su-20220104-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2022:0104-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2022-January/010015.html", }, { category: "self", summary: "SUSE Bug 1181201", url: "https://bugzilla.suse.com/1181201", }, { category: "self", summary: "SUSE Bug 1181202", url: "https://bugzilla.suse.com/1181202", }, { category: "self", summary: "SUSE CVE CVE-2020-14409 page", url: "https://www.suse.com/security/cve/CVE-2020-14409/", }, { category: "self", summary: "SUSE CVE CVE-2020-14410 page", url: "https://www.suse.com/security/cve/CVE-2020-14410/", }, ], title: "Security update for SDL2", tracking: { current_release_date: "2022-01-18T08:37:25Z", generator: { date: "2022-01-18T08:37:25Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2022:0104-1", initial_release_date: "2022-01-18T08:37:25Z", revision_history: [ { date: "2022-01-18T08:37:25Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "libSDL2-2_0-0-2.0.8-11.3.1.aarch64", product: { name: "libSDL2-2_0-0-2.0.8-11.3.1.aarch64", product_id: "libSDL2-2_0-0-2.0.8-11.3.1.aarch64", }, }, { category: "product_version", name: "libSDL2-devel-2.0.8-11.3.1.aarch64", product: { name: "libSDL2-devel-2.0.8-11.3.1.aarch64", product_id: "libSDL2-devel-2.0.8-11.3.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "libSDL2-2_0-0-64bit-2.0.8-11.3.1.aarch64_ilp32", product: { name: "libSDL2-2_0-0-64bit-2.0.8-11.3.1.aarch64_ilp32", product_id: "libSDL2-2_0-0-64bit-2.0.8-11.3.1.aarch64_ilp32", }, }, { category: "product_version", name: "libSDL2-devel-64bit-2.0.8-11.3.1.aarch64_ilp32", product: { name: "libSDL2-devel-64bit-2.0.8-11.3.1.aarch64_ilp32", product_id: "libSDL2-devel-64bit-2.0.8-11.3.1.aarch64_ilp32", }, }, ], category: "architecture", name: "aarch64_ilp32", }, { branches: [ { category: "product_version", name: "libSDL2-2_0-0-2.0.8-11.3.1.i586", product: { name: "libSDL2-2_0-0-2.0.8-11.3.1.i586", product_id: "libSDL2-2_0-0-2.0.8-11.3.1.i586", }, }, { category: "product_version", name: "libSDL2-devel-2.0.8-11.3.1.i586", product: { name: "libSDL2-devel-2.0.8-11.3.1.i586", product_id: "libSDL2-devel-2.0.8-11.3.1.i586", }, }, ], category: "architecture", name: "i586", }, { branches: [ { category: "product_version", name: "libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", product: { name: "libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", product_id: "libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", }, }, { category: "product_version", name: "libSDL2-devel-2.0.8-11.3.1.ppc64le", product: { name: "libSDL2-devel-2.0.8-11.3.1.ppc64le", product_id: "libSDL2-devel-2.0.8-11.3.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "libSDL2-2_0-0-2.0.8-11.3.1.s390x", product: { name: "libSDL2-2_0-0-2.0.8-11.3.1.s390x", product_id: "libSDL2-2_0-0-2.0.8-11.3.1.s390x", }, }, { category: "product_version", name: "libSDL2-devel-2.0.8-11.3.1.s390x", product: { name: "libSDL2-devel-2.0.8-11.3.1.s390x", product_id: "libSDL2-devel-2.0.8-11.3.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64", product: { name: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64", product_id: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64", }, }, { category: "product_version", name: "libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", product: { name: "libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", product_id: "libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", }, }, { category: "product_version", name: "libSDL2-devel-2.0.8-11.3.1.x86_64", product: { name: "libSDL2-devel-2.0.8-11.3.1.x86_64", product_id: "libSDL2-devel-2.0.8-11.3.1.x86_64", }, }, { category: "product_version", name: "libSDL2-devel-32bit-2.0.8-11.3.1.x86_64", product: { name: "libSDL2-devel-32bit-2.0.8-11.3.1.x86_64", product_id: "libSDL2-devel-32bit-2.0.8-11.3.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3", product: { name: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3", product_id: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-desktop-applications:15:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Module for Package Hub 15 SP3", product: { name: "SUSE Linux Enterprise Module for Package Hub 15 SP3", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP3", product_identification_helper: { cpe: "cpe:/o:suse:packagehub:15:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS", product: { name: "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS", product_identification_helper: { cpe: "cpe:/o:suse:sle_hpc-espos:15:sp2", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS", product: { name: "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS", product_identification_helper: { cpe: "cpe:/o:suse:sle_hpc-ltss:15:sp2", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 15 SP2-BCL", product: { name: "SUSE Linux Enterprise Server 15 SP2-BCL", product_id: "SUSE Linux Enterprise Server 15 SP2-BCL", product_identification_helper: { cpe: "cpe:/o:suse:sles_bcl:15:sp2", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 15 SP2-LTSS", product: { name: "SUSE Linux Enterprise Server 15 SP2-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP2-LTSS", product_identification_helper: { cpe: "cpe:/o:suse:sles-ltss:15:sp2", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server for SAP Applications 15 SP2", product: { name: "SUSE Linux Enterprise Server for SAP Applications 15 SP2", product_id: "SUSE Linux Enterprise Server for SAP Applications 15 SP2", product_identification_helper: { cpe: "cpe:/o:suse:sles_sap:15:sp2", }, }, }, { category: "product_name", name: "SUSE Manager Proxy 4.1", product: { name: "SUSE Manager Proxy 4.1", product_id: "SUSE Manager Proxy 4.1", product_identification_helper: { cpe: "cpe:/o:suse:suse-manager-proxy:4.1", }, }, }, { category: "product_name", name: "SUSE Manager Retail Branch Server 4.1", product: { name: "SUSE Manager Retail Branch Server 4.1", product_id: "SUSE Manager Retail Branch Server 4.1", product_identification_helper: { cpe: "cpe:/o:suse:suse-manager-retail-branch-server:4.1", }, }, }, { category: "product_name", name: "SUSE Manager Server 4.1", product: { name: "SUSE Manager Server 4.1", product_id: "SUSE Manager Server 4.1", product_identification_helper: { cpe: "cpe:/o:suse:suse-manager-server:4.1", }, }, }, { category: "product_name", name: "SUSE Enterprise Storage 7", product: { name: "SUSE Enterprise Storage 7", product_id: "SUSE Enterprise Storage 7", product_identification_helper: { cpe: "cpe:/o:suse:ses:7", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.aarch64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3", product_id: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.ppc64le as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3", product_id: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.s390x as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3", product_id: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.s390x", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3", product_id: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.aarch64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3", product_id: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.aarch64", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.ppc64le as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3", product_id: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.ppc64le", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.s390x as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3", product_id: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.s390x", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.x86_64 as component of SUSE Linux Enterprise Module for Desktop Applications 15 SP3", product_id: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Desktop Applications 15 SP3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP3", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-devel-2.0.8-11.3.1.aarch64", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-devel-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.aarch64", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL", product_id: "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP2-BCL", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL", product_id: "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL2-devel-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP2-BCL", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP2-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP2-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.s390x", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP2-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP2-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.aarch64", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP2-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.ppc64le", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP2-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.s390x", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP2-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP2-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2", product_id: "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15 SP2", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2", product_id: "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15 SP2", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2", product_id: "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-devel-2.0.8-11.3.1.ppc64le", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15 SP2", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2", product_id: "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-devel-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15 SP2", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64 as component of SUSE Manager Proxy 4.1", product_id: "SUSE Manager Proxy 4.1:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64", relates_to_product_reference: "SUSE Manager Proxy 4.1", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.x86_64 as component of SUSE Manager Proxy 4.1", product_id: "SUSE Manager Proxy 4.1:libSDL2-devel-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.x86_64", relates_to_product_reference: "SUSE Manager Proxy 4.1", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1", product_id: "SUSE Manager Retail Branch Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64", relates_to_product_reference: "SUSE Manager Retail Branch Server 4.1", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1", product_id: "SUSE Manager Retail Branch Server 4.1:libSDL2-devel-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.x86_64", relates_to_product_reference: "SUSE Manager Retail Branch Server 4.1", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.ppc64le as component of SUSE Manager Server 4.1", product_id: "SUSE Manager Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", relates_to_product_reference: "SUSE Manager Server 4.1", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.s390x as component of SUSE Manager Server 4.1", product_id: "SUSE Manager Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.s390x", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.s390x", relates_to_product_reference: "SUSE Manager Server 4.1", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64 as component of SUSE Manager Server 4.1", product_id: "SUSE Manager Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64", relates_to_product_reference: "SUSE Manager Server 4.1", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.ppc64le as component of SUSE Manager Server 4.1", product_id: "SUSE Manager Server 4.1:libSDL2-devel-2.0.8-11.3.1.ppc64le", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.ppc64le", relates_to_product_reference: "SUSE Manager Server 4.1", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.s390x as component of SUSE Manager Server 4.1", product_id: "SUSE Manager Server 4.1:libSDL2-devel-2.0.8-11.3.1.s390x", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.s390x", relates_to_product_reference: "SUSE Manager Server 4.1", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.x86_64 as component of SUSE Manager Server 4.1", product_id: "SUSE Manager Server 4.1:libSDL2-devel-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.x86_64", relates_to_product_reference: "SUSE Manager Server 4.1", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.aarch64 as component of SUSE Enterprise Storage 7", product_id: "SUSE Enterprise Storage 7:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.aarch64", relates_to_product_reference: "SUSE Enterprise Storage 7", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64 as component of SUSE Enterprise Storage 7", product_id: "SUSE Enterprise Storage 7:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64", relates_to_product_reference: "SUSE Enterprise Storage 7", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.aarch64 as component of SUSE Enterprise Storage 7", product_id: "SUSE Enterprise Storage 7:libSDL2-devel-2.0.8-11.3.1.aarch64", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.aarch64", relates_to_product_reference: "SUSE Enterprise Storage 7", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.x86_64 as component of SUSE Enterprise Storage 7", product_id: "SUSE Enterprise Storage 7:libSDL2-devel-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.x86_64", relates_to_product_reference: "SUSE Enterprise Storage 7", }, ], }, vulnerabilities: [ { cve: "CVE-2020-14409", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-14409", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Enterprise Storage 7:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Enterprise Storage 7:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Enterprise Storage 7:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Enterprise Storage 7:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-devel-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Manager Proxy 4.1:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Manager Proxy 4.1:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Manager Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "SUSE Manager Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.s390x", "SUSE Manager Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Manager Server 4.1:libSDL2-devel-2.0.8-11.3.1.ppc64le", "SUSE Manager Server 4.1:libSDL2-devel-2.0.8-11.3.1.s390x", "SUSE Manager Server 4.1:libSDL2-devel-2.0.8-11.3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-14409", url: "https://www.suse.com/security/cve/CVE-2020-14409", }, { category: "external", summary: "SUSE Bug 1181202 for CVE-2020-14409", url: "https://bugzilla.suse.com/1181202", }, { category: "external", summary: "SUSE Bug 1200204 for CVE-2020-14409", url: "https://bugzilla.suse.com/1200204", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Enterprise Storage 7:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Enterprise Storage 7:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Enterprise Storage 7:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Enterprise Storage 7:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-devel-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Manager Proxy 4.1:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Manager Proxy 4.1:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Manager Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "SUSE Manager Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.s390x", "SUSE Manager Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Manager Server 4.1:libSDL2-devel-2.0.8-11.3.1.ppc64le", "SUSE Manager Server 4.1:libSDL2-devel-2.0.8-11.3.1.s390x", "SUSE Manager Server 4.1:libSDL2-devel-2.0.8-11.3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Enterprise Storage 7:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Enterprise Storage 7:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Enterprise Storage 7:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Enterprise Storage 7:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-devel-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Manager Proxy 4.1:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Manager Proxy 4.1:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Manager Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "SUSE Manager Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.s390x", "SUSE Manager Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Manager Server 4.1:libSDL2-devel-2.0.8-11.3.1.ppc64le", "SUSE Manager Server 4.1:libSDL2-devel-2.0.8-11.3.1.s390x", "SUSE Manager Server 4.1:libSDL2-devel-2.0.8-11.3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-01-18T08:37:25Z", details: "important", }, ], title: "CVE-2020-14409", }, { cve: "CVE-2020-14410", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-14410", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 2.0.12 has a heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Enterprise Storage 7:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Enterprise Storage 7:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Enterprise Storage 7:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Enterprise Storage 7:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-devel-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Manager Proxy 4.1:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Manager Proxy 4.1:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Manager Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "SUSE Manager Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.s390x", "SUSE Manager Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Manager Server 4.1:libSDL2-devel-2.0.8-11.3.1.ppc64le", "SUSE Manager Server 4.1:libSDL2-devel-2.0.8-11.3.1.s390x", "SUSE Manager Server 4.1:libSDL2-devel-2.0.8-11.3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-14410", url: "https://www.suse.com/security/cve/CVE-2020-14410", }, { category: "external", summary: "SUSE Bug 1181201 for CVE-2020-14410", url: "https://bugzilla.suse.com/1181201", }, { category: "external", summary: "SUSE Bug 1200204 for CVE-2020-14410", url: "https://bugzilla.suse.com/1200204", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Enterprise Storage 7:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Enterprise Storage 7:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Enterprise Storage 7:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Enterprise Storage 7:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-devel-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Manager Proxy 4.1:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Manager Proxy 4.1:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Manager Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "SUSE Manager Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.s390x", "SUSE Manager Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Manager Server 4.1:libSDL2-devel-2.0.8-11.3.1.ppc64le", "SUSE Manager Server 4.1:libSDL2-devel-2.0.8-11.3.1.s390x", "SUSE Manager Server 4.1:libSDL2-devel-2.0.8-11.3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Enterprise Storage 7:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Enterprise Storage 7:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Enterprise Storage 7:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Enterprise Storage 7:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.s390x", "SUSE Linux Enterprise Module for Desktop Applications 15 SP3:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-BCL:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.aarch64", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.s390x", "SUSE Linux Enterprise Server 15 SP2-LTSS:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-devel-2.0.8-11.3.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP2:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Manager Proxy 4.1:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Manager Proxy 4.1:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Manager Retail Branch Server 4.1:libSDL2-devel-2.0.8-11.3.1.x86_64", "SUSE Manager Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "SUSE Manager Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.s390x", "SUSE Manager Server 4.1:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Manager Server 4.1:libSDL2-devel-2.0.8-11.3.1.ppc64le", "SUSE Manager Server 4.1:libSDL2-devel-2.0.8-11.3.1.s390x", "SUSE Manager Server 4.1:libSDL2-devel-2.0.8-11.3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-01-18T08:37:25Z", details: "important", }, ], title: "CVE-2020-14410", }, ], }
suse-su-2022:0825-1
Vulnerability from csaf_suse
Published
2022-03-14 14:17
Modified
2022-03-14 14:17
Summary
Security update for SDL2
Notes
Title of the patch
Security update for SDL2
Description of the patch
This update for SDL2 fixes the following issues:
- CVE-2020-14409, CVE-2020-14410: Fixed overflow in surface pitch calculation (bsc#1181201, bsc#1181202).
Patchnames
SUSE-2022-825,SUSE-SLE-Product-HPC-15-2022-825,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2022-825,SUSE-SLE-Product-HPC-15-SP1-LTSS-2022-825,SUSE-SLE-Product-SLES-15-2022-825,SUSE-SLE-Product-SLES-15-SP1-BCL-2022-825,SUSE-SLE-Product-SLES-15-SP1-LTSS-2022-825,SUSE-SLE-Product-SLES_SAP-15-2022-825,SUSE-SLE-Product-SLES_SAP-15-SP1-2022-825,SUSE-Storage-6-2022-825
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for SDL2", title: "Title of the patch", }, { category: "description", text: "This update for SDL2 fixes the following issues:\n\n- CVE-2020-14409, CVE-2020-14410: Fixed overflow in surface pitch calculation (bsc#1181201, bsc#1181202).\n", title: "Description of the patch", }, { category: "details", text: "SUSE-2022-825,SUSE-SLE-Product-HPC-15-2022-825,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2022-825,SUSE-SLE-Product-HPC-15-SP1-LTSS-2022-825,SUSE-SLE-Product-SLES-15-2022-825,SUSE-SLE-Product-SLES-15-SP1-BCL-2022-825,SUSE-SLE-Product-SLES-15-SP1-LTSS-2022-825,SUSE-SLE-Product-SLES_SAP-15-2022-825,SUSE-SLE-Product-SLES_SAP-15-SP1-2022-825,SUSE-Storage-6-2022-825", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_0825-1.json", }, { category: "self", summary: "URL for SUSE-SU-2022:0825-1", url: "https://www.suse.com/support/update/announcement/2022/suse-su-20220825-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2022:0825-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2022-March/010429.html", }, { category: "self", summary: "SUSE Bug 1181201", url: "https://bugzilla.suse.com/1181201", }, { category: "self", summary: "SUSE Bug 1181202", url: "https://bugzilla.suse.com/1181202", }, { category: "self", summary: "SUSE CVE CVE-2020-14409 page", url: "https://www.suse.com/security/cve/CVE-2020-14409/", }, { category: "self", summary: "SUSE CVE CVE-2020-14410 page", url: "https://www.suse.com/security/cve/CVE-2020-14410/", }, ], title: "Security update for SDL2", tracking: { current_release_date: "2022-03-14T14:17:46Z", generator: { date: "2022-03-14T14:17:46Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2022:0825-1", initial_release_date: "2022-03-14T14:17:46Z", revision_history: [ { date: "2022-03-14T14:17:46Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "libSDL2-2_0-0-2.0.8-3.18.1.aarch64", product: { name: "libSDL2-2_0-0-2.0.8-3.18.1.aarch64", product_id: "libSDL2-2_0-0-2.0.8-3.18.1.aarch64", }, }, { category: "product_version", name: "libSDL2-devel-2.0.8-3.18.1.aarch64", product: { name: "libSDL2-devel-2.0.8-3.18.1.aarch64", product_id: "libSDL2-devel-2.0.8-3.18.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "libSDL2-2_0-0-64bit-2.0.8-3.18.1.aarch64_ilp32", product: { name: "libSDL2-2_0-0-64bit-2.0.8-3.18.1.aarch64_ilp32", product_id: "libSDL2-2_0-0-64bit-2.0.8-3.18.1.aarch64_ilp32", }, }, { category: "product_version", name: "libSDL2-devel-64bit-2.0.8-3.18.1.aarch64_ilp32", product: { name: "libSDL2-devel-64bit-2.0.8-3.18.1.aarch64_ilp32", product_id: "libSDL2-devel-64bit-2.0.8-3.18.1.aarch64_ilp32", }, }, ], category: "architecture", name: "aarch64_ilp32", }, { branches: [ { category: "product_version", name: "libSDL2-2_0-0-2.0.8-3.18.1.i586", product: { name: "libSDL2-2_0-0-2.0.8-3.18.1.i586", product_id: "libSDL2-2_0-0-2.0.8-3.18.1.i586", }, }, { category: "product_version", name: "libSDL2-devel-2.0.8-3.18.1.i586", product: { name: "libSDL2-devel-2.0.8-3.18.1.i586", product_id: "libSDL2-devel-2.0.8-3.18.1.i586", }, }, ], category: "architecture", name: "i586", }, { branches: [ { category: "product_version", name: "libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", product: { name: "libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", product_id: "libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", }, }, { category: "product_version", name: "libSDL2-devel-2.0.8-3.18.1.ppc64le", product: { name: "libSDL2-devel-2.0.8-3.18.1.ppc64le", product_id: "libSDL2-devel-2.0.8-3.18.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "libSDL2-2_0-0-2.0.8-3.18.1.s390x", product: { name: "libSDL2-2_0-0-2.0.8-3.18.1.s390x", product_id: "libSDL2-2_0-0-2.0.8-3.18.1.s390x", }, }, { category: "product_version", name: "libSDL2-devel-2.0.8-3.18.1.s390x", product: { name: "libSDL2-devel-2.0.8-3.18.1.s390x", product_id: "libSDL2-devel-2.0.8-3.18.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "libSDL2-2_0-0-2.0.8-3.18.1.x86_64", product: { name: "libSDL2-2_0-0-2.0.8-3.18.1.x86_64", product_id: "libSDL2-2_0-0-2.0.8-3.18.1.x86_64", }, }, { category: "product_version", name: "libSDL2-2_0-0-32bit-2.0.8-3.18.1.x86_64", product: { name: "libSDL2-2_0-0-32bit-2.0.8-3.18.1.x86_64", product_id: "libSDL2-2_0-0-32bit-2.0.8-3.18.1.x86_64", }, }, { category: "product_version", name: "libSDL2-devel-2.0.8-3.18.1.x86_64", product: { name: "libSDL2-devel-2.0.8-3.18.1.x86_64", product_id: "libSDL2-devel-2.0.8-3.18.1.x86_64", }, }, { category: "product_version", name: "libSDL2-devel-32bit-2.0.8-3.18.1.x86_64", product: { name: "libSDL2-devel-32bit-2.0.8-3.18.1.x86_64", product_id: "libSDL2-devel-32bit-2.0.8-3.18.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", product: { name: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", product_identification_helper: { cpe: "cpe:/o:suse:sle_hpc-espos:15", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise High Performance Computing 15-LTSS", product: { name: "SUSE Linux Enterprise High Performance Computing 15-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15-LTSS", product_identification_helper: { cpe: "cpe:/o:suse:sle_hpc-ltss:15", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", product: { name: "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", product_identification_helper: { cpe: "cpe:/o:suse:sle_hpc-espos:15:sp1", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", product: { name: "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", product_identification_helper: { cpe: "cpe:/o:suse:sle_hpc-ltss:15:sp1", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 15-LTSS", product: { name: "SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS", product_identification_helper: { cpe: "cpe:/o:suse:sles-ltss:15", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 15 SP1-BCL", product: { name: "SUSE Linux Enterprise Server 15 SP1-BCL", product_id: "SUSE Linux Enterprise Server 15 SP1-BCL", product_identification_helper: { cpe: "cpe:/o:suse:sles_bcl:15:sp1", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server 15 SP1-LTSS", product: { name: "SUSE Linux Enterprise Server 15 SP1-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP1-LTSS", product_identification_helper: { cpe: "cpe:/o:suse:sles-ltss:15:sp1", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server for SAP Applications 15", product: { name: "SUSE Linux Enterprise Server for SAP Applications 15", product_id: "SUSE Linux Enterprise Server for SAP Applications 15", product_identification_helper: { cpe: "cpe:/o:suse:sles_sap:15", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Server for SAP Applications 15 SP1", product: { name: "SUSE Linux Enterprise Server for SAP Applications 15 SP1", product_id: "SUSE Linux Enterprise Server for SAP Applications 15 SP1", product_identification_helper: { cpe: "cpe:/o:suse:sles_sap:15:sp1", }, }, }, { category: "product_name", name: "SUSE Enterprise Storage 6", product: { name: "SUSE Enterprise Storage 6", product_id: "SUSE Enterprise Storage 6", product_identification_helper: { cpe: "cpe:/o:suse:ses:6", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-3.18.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", }, product_reference: "libSDL2-2_0-0-2.0.8-3.18.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-3.18.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", }, product_reference: "libSDL2-2_0-0-2.0.8-3.18.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-3.18.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-devel-2.0.8-3.18.1.aarch64", }, product_reference: "libSDL2-devel-2.0.8-3.18.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-3.18.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-devel-2.0.8-3.18.1.x86_64", }, product_reference: "libSDL2-devel-2.0.8-3.18.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-3.18.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", }, product_reference: "libSDL2-2_0-0-2.0.8-3.18.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-3.18.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", }, product_reference: "libSDL2-2_0-0-2.0.8-3.18.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-3.18.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", }, product_reference: "libSDL2-devel-2.0.8-3.18.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-3.18.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", }, product_reference: "libSDL2-devel-2.0.8-3.18.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-3.18.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", }, product_reference: "libSDL2-2_0-0-2.0.8-3.18.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-3.18.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", }, product_reference: "libSDL2-2_0-0-2.0.8-3.18.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-3.18.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-devel-2.0.8-3.18.1.aarch64", }, product_reference: "libSDL2-devel-2.0.8-3.18.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-3.18.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-devel-2.0.8-3.18.1.x86_64", }, product_reference: "libSDL2-devel-2.0.8-3.18.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-3.18.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", }, product_reference: "libSDL2-2_0-0-2.0.8-3.18.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-3.18.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", }, product_reference: "libSDL2-2_0-0-2.0.8-3.18.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-3.18.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", }, product_reference: "libSDL2-devel-2.0.8-3.18.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-3.18.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", product_id: "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", }, product_reference: "libSDL2-devel-2.0.8-3.18.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-3.18.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", }, product_reference: "libSDL2-2_0-0-2.0.8-3.18.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-3.18.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", }, product_reference: "libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-3.18.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.s390x", }, product_reference: "libSDL2-2_0-0-2.0.8-3.18.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-3.18.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", }, product_reference: "libSDL2-2_0-0-2.0.8-3.18.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-3.18.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", }, product_reference: "libSDL2-devel-2.0.8-3.18.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-3.18.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.ppc64le", }, product_reference: "libSDL2-devel-2.0.8-3.18.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-3.18.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.s390x", }, product_reference: "libSDL2-devel-2.0.8-3.18.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-3.18.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS", product_id: "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", }, product_reference: "libSDL2-devel-2.0.8-3.18.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-3.18.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL", product_id: "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", }, product_reference: "libSDL2-2_0-0-2.0.8-3.18.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP1-BCL", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-3.18.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-BCL", product_id: "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL2-devel-2.0.8-3.18.1.x86_64", }, product_reference: "libSDL2-devel-2.0.8-3.18.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP1-BCL", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-3.18.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", }, product_reference: "libSDL2-2_0-0-2.0.8-3.18.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP1-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-3.18.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", }, product_reference: "libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP1-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-3.18.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.s390x", }, product_reference: "libSDL2-2_0-0-2.0.8-3.18.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP1-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-3.18.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", }, product_reference: "libSDL2-2_0-0-2.0.8-3.18.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP1-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-3.18.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", }, product_reference: "libSDL2-devel-2.0.8-3.18.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP1-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-3.18.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP1-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.ppc64le", }, product_reference: "libSDL2-devel-2.0.8-3.18.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP1-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-3.18.1.s390x as component of SUSE Linux Enterprise Server 15 SP1-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.s390x", }, product_reference: "libSDL2-devel-2.0.8-3.18.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP1-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-3.18.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP1-LTSS", product_id: "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", }, product_reference: "libSDL2-devel-2.0.8-3.18.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server 15 SP1-LTSS", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-3.18.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15", product_id: "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", }, product_reference: "libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-3.18.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15", product_id: "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", }, product_reference: "libSDL2-2_0-0-2.0.8-3.18.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-3.18.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15", product_id: "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-devel-2.0.8-3.18.1.ppc64le", }, product_reference: "libSDL2-devel-2.0.8-3.18.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-3.18.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15", product_id: "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-devel-2.0.8-3.18.1.x86_64", }, product_reference: "libSDL2-devel-2.0.8-3.18.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-3.18.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1", product_id: "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", }, product_reference: "libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15 SP1", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-3.18.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1", product_id: "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", }, product_reference: "libSDL2-2_0-0-2.0.8-3.18.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15 SP1", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-3.18.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1", product_id: "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-devel-2.0.8-3.18.1.ppc64le", }, product_reference: "libSDL2-devel-2.0.8-3.18.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15 SP1", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-3.18.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP1", product_id: "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-devel-2.0.8-3.18.1.x86_64", }, product_reference: "libSDL2-devel-2.0.8-3.18.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Server for SAP Applications 15 SP1", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-3.18.1.aarch64 as component of SUSE Enterprise Storage 6", product_id: "SUSE Enterprise Storage 6:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", }, product_reference: "libSDL2-2_0-0-2.0.8-3.18.1.aarch64", relates_to_product_reference: "SUSE Enterprise Storage 6", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-3.18.1.x86_64 as component of SUSE Enterprise Storage 6", product_id: "SUSE Enterprise Storage 6:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", }, product_reference: "libSDL2-2_0-0-2.0.8-3.18.1.x86_64", relates_to_product_reference: "SUSE Enterprise Storage 6", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-3.18.1.aarch64 as component of SUSE Enterprise Storage 6", product_id: "SUSE Enterprise Storage 6:libSDL2-devel-2.0.8-3.18.1.aarch64", }, product_reference: "libSDL2-devel-2.0.8-3.18.1.aarch64", relates_to_product_reference: "SUSE Enterprise Storage 6", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-3.18.1.x86_64 as component of SUSE Enterprise Storage 6", product_id: "SUSE Enterprise Storage 6:libSDL2-devel-2.0.8-3.18.1.x86_64", }, product_reference: "libSDL2-devel-2.0.8-3.18.1.x86_64", relates_to_product_reference: "SUSE Enterprise Storage 6", }, ], }, vulnerabilities: [ { cve: "CVE-2020-14409", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-14409", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Enterprise Storage 6:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Enterprise Storage 6:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Enterprise Storage 6:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Enterprise Storage 6:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-devel-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-devel-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-devel-2.0.8-3.18.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-14409", url: "https://www.suse.com/security/cve/CVE-2020-14409", }, { category: "external", summary: "SUSE Bug 1181202 for CVE-2020-14409", url: "https://bugzilla.suse.com/1181202", }, { category: "external", summary: "SUSE Bug 1200204 for CVE-2020-14409", url: "https://bugzilla.suse.com/1200204", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Enterprise Storage 6:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Enterprise Storage 6:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Enterprise Storage 6:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Enterprise Storage 6:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-devel-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-devel-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-devel-2.0.8-3.18.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Enterprise Storage 6:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Enterprise Storage 6:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Enterprise Storage 6:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Enterprise Storage 6:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-devel-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-devel-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-devel-2.0.8-3.18.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-03-14T14:17:46Z", details: "important", }, ], title: "CVE-2020-14409", }, { cve: "CVE-2020-14410", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-14410", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 2.0.12 has a heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Enterprise Storage 6:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Enterprise Storage 6:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Enterprise Storage 6:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Enterprise Storage 6:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-devel-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-devel-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-devel-2.0.8-3.18.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-14410", url: "https://www.suse.com/security/cve/CVE-2020-14410", }, { category: "external", summary: "SUSE Bug 1181201 for CVE-2020-14410", url: "https://bugzilla.suse.com/1181201", }, { category: "external", summary: "SUSE Bug 1200204 for CVE-2020-14410", url: "https://bugzilla.suse.com/1200204", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Enterprise Storage 6:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Enterprise Storage 6:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Enterprise Storage 6:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Enterprise Storage 6:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-devel-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-devel-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-devel-2.0.8-3.18.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Enterprise Storage 6:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Enterprise Storage 6:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Enterprise Storage 6:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Enterprise Storage 6:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-ESPOS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise High Performance Computing 15-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-BCL:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.s390x", "SUSE Linux Enterprise Server 15 SP1-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.aarch64", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.s390x", "SUSE Linux Enterprise Server 15-LTSS:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-devel-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15 SP1:libSDL2-devel-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-2_0-0-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-2_0-0-2.0.8-3.18.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-devel-2.0.8-3.18.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 15:libSDL2-devel-2.0.8-3.18.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-03-14T14:17:46Z", details: "important", }, ], title: "CVE-2020-14410", }, ], }
suse-su-2022:0104-2
Vulnerability from csaf_suse
Published
2022-02-14 10:49
Modified
2022-02-14 10:49
Summary
Security update for SDL2
Notes
Title of the patch
Security update for SDL2
Description of the patch
This update for SDL2 fixes the following issues:
- CVE-2020-14409: Fixed Integer Overflow resulting in heap corruption in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP (bsc#1181202).
- CVE-2020-14410: Fixed heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP (bsc#1181201).
Patchnames
SUSE-2022-104,SUSE-SLE-Product-RT-15-SP2-2022-104
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for SDL2", title: "Title of the patch", }, { category: "description", text: "This update for SDL2 fixes the following issues:\n\n- CVE-2020-14409: Fixed Integer Overflow resulting in heap corruption in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP (bsc#1181202).\n- CVE-2020-14410: Fixed heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP (bsc#1181201).\n", title: "Description of the patch", }, { category: "details", text: "SUSE-2022-104,SUSE-SLE-Product-RT-15-SP2-2022-104", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_0104-2.json", }, { category: "self", summary: "URL for SUSE-SU-2022:0104-2", url: "https://www.suse.com/support/update/announcement/2022/suse-su-20220104-2/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2022:0104-2", url: "https://lists.suse.com/pipermail/sle-security-updates/2022-February/010224.html", }, { category: "self", summary: "SUSE Bug 1181201", url: "https://bugzilla.suse.com/1181201", }, { category: "self", summary: "SUSE Bug 1181202", url: "https://bugzilla.suse.com/1181202", }, { category: "self", summary: "SUSE CVE CVE-2020-14409 page", url: "https://www.suse.com/security/cve/CVE-2020-14409/", }, { category: "self", summary: "SUSE CVE CVE-2020-14410 page", url: "https://www.suse.com/security/cve/CVE-2020-14410/", }, ], title: "Security update for SDL2", tracking: { current_release_date: "2022-02-14T10:49:09Z", generator: { date: "2022-02-14T10:49:09Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2022:0104-2", initial_release_date: "2022-02-14T10:49:09Z", revision_history: [ { date: "2022-02-14T10:49:09Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "libSDL2-2_0-0-2.0.8-11.3.1.aarch64", product: { name: "libSDL2-2_0-0-2.0.8-11.3.1.aarch64", product_id: "libSDL2-2_0-0-2.0.8-11.3.1.aarch64", }, }, { category: "product_version", name: "libSDL2-devel-2.0.8-11.3.1.aarch64", product: { name: "libSDL2-devel-2.0.8-11.3.1.aarch64", product_id: "libSDL2-devel-2.0.8-11.3.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "libSDL2-2_0-0-64bit-2.0.8-11.3.1.aarch64_ilp32", product: { name: "libSDL2-2_0-0-64bit-2.0.8-11.3.1.aarch64_ilp32", product_id: "libSDL2-2_0-0-64bit-2.0.8-11.3.1.aarch64_ilp32", }, }, { category: "product_version", name: "libSDL2-devel-64bit-2.0.8-11.3.1.aarch64_ilp32", product: { name: "libSDL2-devel-64bit-2.0.8-11.3.1.aarch64_ilp32", product_id: "libSDL2-devel-64bit-2.0.8-11.3.1.aarch64_ilp32", }, }, ], category: "architecture", name: "aarch64_ilp32", }, { branches: [ { category: "product_version", name: "libSDL2-2_0-0-2.0.8-11.3.1.i586", product: { name: "libSDL2-2_0-0-2.0.8-11.3.1.i586", product_id: "libSDL2-2_0-0-2.0.8-11.3.1.i586", }, }, { category: "product_version", name: "libSDL2-devel-2.0.8-11.3.1.i586", product: { name: "libSDL2-devel-2.0.8-11.3.1.i586", product_id: "libSDL2-devel-2.0.8-11.3.1.i586", }, }, ], category: "architecture", name: "i586", }, { branches: [ { category: "product_version", name: "libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", product: { name: "libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", product_id: "libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", }, }, { category: "product_version", name: "libSDL2-devel-2.0.8-11.3.1.ppc64le", product: { name: "libSDL2-devel-2.0.8-11.3.1.ppc64le", product_id: "libSDL2-devel-2.0.8-11.3.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "libSDL2-2_0-0-2.0.8-11.3.1.s390x", product: { name: "libSDL2-2_0-0-2.0.8-11.3.1.s390x", product_id: "libSDL2-2_0-0-2.0.8-11.3.1.s390x", }, }, { category: "product_version", name: "libSDL2-devel-2.0.8-11.3.1.s390x", product: { name: "libSDL2-devel-2.0.8-11.3.1.s390x", product_id: "libSDL2-devel-2.0.8-11.3.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64", product: { name: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64", product_id: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64", }, }, { category: "product_version", name: "libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", product: { name: "libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", product_id: "libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", }, }, { category: "product_version", name: "libSDL2-devel-2.0.8-11.3.1.x86_64", product: { name: "libSDL2-devel-2.0.8-11.3.1.x86_64", product_id: "libSDL2-devel-2.0.8-11.3.1.x86_64", }, }, { category: "product_version", name: "libSDL2-devel-32bit-2.0.8-11.3.1.x86_64", product: { name: "libSDL2-devel-32bit-2.0.8-11.3.1.x86_64", product_id: "libSDL2-devel-32bit-2.0.8-11.3.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Linux Enterprise Real Time 15 SP2", product: { name: "SUSE Linux Enterprise Real Time 15 SP2", product_id: "SUSE Linux Enterprise Real Time 15 SP2", product_identification_helper: { cpe: "cpe:/o:suse:sle_rt:15:sp2", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64 as component of SUSE Linux Enterprise Real Time 15 SP2", product_id: "SUSE Linux Enterprise Real Time 15 SP2:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Real Time 15 SP2", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.x86_64 as component of SUSE Linux Enterprise Real Time 15 SP2", product_id: "SUSE Linux Enterprise Real Time 15 SP2:libSDL2-devel-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Real Time 15 SP2", }, ], }, vulnerabilities: [ { cve: "CVE-2020-14409", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-14409", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Real Time 15 SP2:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Real Time 15 SP2:libSDL2-devel-2.0.8-11.3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-14409", url: "https://www.suse.com/security/cve/CVE-2020-14409", }, { category: "external", summary: "SUSE Bug 1181202 for CVE-2020-14409", url: "https://bugzilla.suse.com/1181202", }, { category: "external", summary: "SUSE Bug 1200204 for CVE-2020-14409", url: "https://bugzilla.suse.com/1200204", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Real Time 15 SP2:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Real Time 15 SP2:libSDL2-devel-2.0.8-11.3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Real Time 15 SP2:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Real Time 15 SP2:libSDL2-devel-2.0.8-11.3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-02-14T10:49:09Z", details: "important", }, ], title: "CVE-2020-14409", }, { cve: "CVE-2020-14410", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-14410", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 2.0.12 has a heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Real Time 15 SP2:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Real Time 15 SP2:libSDL2-devel-2.0.8-11.3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-14410", url: "https://www.suse.com/security/cve/CVE-2020-14410", }, { category: "external", summary: "SUSE Bug 1181201 for CVE-2020-14410", url: "https://bugzilla.suse.com/1181201", }, { category: "external", summary: "SUSE Bug 1200204 for CVE-2020-14410", url: "https://bugzilla.suse.com/1200204", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Real Time 15 SP2:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Real Time 15 SP2:libSDL2-devel-2.0.8-11.3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Real Time 15 SP2:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "SUSE Linux Enterprise Real Time 15 SP2:libSDL2-devel-2.0.8-11.3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-02-14T10:49:09Z", details: "important", }, ], title: "CVE-2020-14410", }, ], }
opensuse-su-2022:0104-1
Vulnerability from csaf_opensuse
Published
2022-01-18 08:37
Modified
2022-01-18 08:37
Summary
Security update for SDL2
Notes
Title of the patch
Security update for SDL2
Description of the patch
This update for SDL2 fixes the following issues:
- CVE-2020-14409: Fixed Integer Overflow resulting in heap corruption in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP (bsc#1181202).
- CVE-2020-14410: Fixed heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP (bsc#1181201).
Patchnames
openSUSE-2022-104,openSUSE-SLE-15.3-2022-104
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for SDL2", title: "Title of the patch", }, { category: "description", text: "This update for SDL2 fixes the following issues:\n\n- CVE-2020-14409: Fixed Integer Overflow resulting in heap corruption in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP (bsc#1181202).\n- CVE-2020-14410: Fixed heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP (bsc#1181201).\n", title: "Description of the patch", }, { category: "details", text: "openSUSE-2022-104,openSUSE-SLE-15.3-2022-104", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2022_0104-1.json", }, { category: "self", summary: "URL for openSUSE-SU-2022:0104-1", url: "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/GCAJV7QU7NXYUTY7OMBOV6LAES2X326R/", }, { category: "self", summary: "E-Mail link for openSUSE-SU-2022:0104-1", url: "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/GCAJV7QU7NXYUTY7OMBOV6LAES2X326R/", }, { category: "self", summary: "SUSE Bug 1181201", url: "https://bugzilla.suse.com/1181201", }, { category: "self", summary: "SUSE Bug 1181202", url: "https://bugzilla.suse.com/1181202", }, { category: "self", summary: "SUSE CVE CVE-2020-14409 page", url: "https://www.suse.com/security/cve/CVE-2020-14409/", }, { category: "self", summary: "SUSE CVE CVE-2020-14410 page", url: "https://www.suse.com/security/cve/CVE-2020-14410/", }, ], title: "Security update for SDL2", tracking: { current_release_date: "2022-01-18T08:37:08Z", generator: { date: "2022-01-18T08:37:08Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "openSUSE-SU-2022:0104-1", initial_release_date: "2022-01-18T08:37:08Z", revision_history: [ { date: "2022-01-18T08:37:08Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "pdns-4.3.1-bp153.2.3.1.aarch64", product: { name: "pdns-4.3.1-bp153.2.3.1.aarch64", product_id: "pdns-4.3.1-bp153.2.3.1.aarch64", }, }, { category: "product_version", name: "pdns-backend-geoip-4.3.1-bp153.2.3.1.aarch64", product: { name: "pdns-backend-geoip-4.3.1-bp153.2.3.1.aarch64", product_id: "pdns-backend-geoip-4.3.1-bp153.2.3.1.aarch64", }, }, { category: "product_version", name: "pdns-backend-godbc-4.3.1-bp153.2.3.1.aarch64", product: { name: "pdns-backend-godbc-4.3.1-bp153.2.3.1.aarch64", product_id: "pdns-backend-godbc-4.3.1-bp153.2.3.1.aarch64", }, }, { category: "product_version", name: "pdns-backend-ldap-4.3.1-bp153.2.3.1.aarch64", product: { name: "pdns-backend-ldap-4.3.1-bp153.2.3.1.aarch64", product_id: "pdns-backend-ldap-4.3.1-bp153.2.3.1.aarch64", }, }, { category: "product_version", name: "pdns-backend-lua-4.3.1-bp153.2.3.1.aarch64", product: { name: "pdns-backend-lua-4.3.1-bp153.2.3.1.aarch64", product_id: "pdns-backend-lua-4.3.1-bp153.2.3.1.aarch64", }, }, { category: "product_version", name: "pdns-backend-mysql-4.3.1-bp153.2.3.1.aarch64", product: { name: "pdns-backend-mysql-4.3.1-bp153.2.3.1.aarch64", product_id: "pdns-backend-mysql-4.3.1-bp153.2.3.1.aarch64", }, }, { category: "product_version", name: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.aarch64", product: { name: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.aarch64", product_id: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.aarch64", }, }, { category: "product_version", name: "pdns-backend-remote-4.3.1-bp153.2.3.1.aarch64", product: { name: "pdns-backend-remote-4.3.1-bp153.2.3.1.aarch64", product_id: "pdns-backend-remote-4.3.1-bp153.2.3.1.aarch64", }, }, { category: "product_version", name: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.aarch64", product: { name: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.aarch64", product_id: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.aarch64", }, }, { category: "product_version", name: "libSDL2-2_0-0-2.0.8-11.3.1.aarch64", product: { name: "libSDL2-2_0-0-2.0.8-11.3.1.aarch64", product_id: "libSDL2-2_0-0-2.0.8-11.3.1.aarch64", }, }, { category: "product_version", name: "libSDL2-devel-2.0.8-11.3.1.aarch64", product: { name: "libSDL2-devel-2.0.8-11.3.1.aarch64", product_id: "libSDL2-devel-2.0.8-11.3.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "pdns-4.3.1-bp153.2.3.1.ppc64le", product: { name: "pdns-4.3.1-bp153.2.3.1.ppc64le", product_id: "pdns-4.3.1-bp153.2.3.1.ppc64le", }, }, { category: "product_version", name: "pdns-backend-geoip-4.3.1-bp153.2.3.1.ppc64le", product: { name: "pdns-backend-geoip-4.3.1-bp153.2.3.1.ppc64le", product_id: "pdns-backend-geoip-4.3.1-bp153.2.3.1.ppc64le", }, }, { category: "product_version", name: "pdns-backend-godbc-4.3.1-bp153.2.3.1.ppc64le", product: { name: "pdns-backend-godbc-4.3.1-bp153.2.3.1.ppc64le", product_id: "pdns-backend-godbc-4.3.1-bp153.2.3.1.ppc64le", }, }, { category: "product_version", name: "pdns-backend-ldap-4.3.1-bp153.2.3.1.ppc64le", product: { name: "pdns-backend-ldap-4.3.1-bp153.2.3.1.ppc64le", product_id: "pdns-backend-ldap-4.3.1-bp153.2.3.1.ppc64le", }, }, { category: "product_version", name: "pdns-backend-lua-4.3.1-bp153.2.3.1.ppc64le", product: { name: "pdns-backend-lua-4.3.1-bp153.2.3.1.ppc64le", product_id: "pdns-backend-lua-4.3.1-bp153.2.3.1.ppc64le", }, }, { category: "product_version", name: "pdns-backend-mysql-4.3.1-bp153.2.3.1.ppc64le", product: { name: "pdns-backend-mysql-4.3.1-bp153.2.3.1.ppc64le", product_id: "pdns-backend-mysql-4.3.1-bp153.2.3.1.ppc64le", }, }, { category: "product_version", name: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.ppc64le", product: { name: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.ppc64le", product_id: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.ppc64le", }, }, { category: "product_version", name: "pdns-backend-remote-4.3.1-bp153.2.3.1.ppc64le", product: { name: "pdns-backend-remote-4.3.1-bp153.2.3.1.ppc64le", product_id: "pdns-backend-remote-4.3.1-bp153.2.3.1.ppc64le", }, }, { category: "product_version", name: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.ppc64le", product: { name: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.ppc64le", product_id: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.ppc64le", }, }, { category: "product_version", name: "libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", product: { name: "libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", product_id: "libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", }, }, { category: "product_version", name: "libSDL2-devel-2.0.8-11.3.1.ppc64le", product: { name: "libSDL2-devel-2.0.8-11.3.1.ppc64le", product_id: "libSDL2-devel-2.0.8-11.3.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "pdns-4.3.1-bp153.2.3.1.s390x", product: { name: "pdns-4.3.1-bp153.2.3.1.s390x", product_id: "pdns-4.3.1-bp153.2.3.1.s390x", }, }, { category: "product_version", name: "pdns-backend-geoip-4.3.1-bp153.2.3.1.s390x", product: { name: "pdns-backend-geoip-4.3.1-bp153.2.3.1.s390x", product_id: "pdns-backend-geoip-4.3.1-bp153.2.3.1.s390x", }, }, { category: "product_version", name: "pdns-backend-godbc-4.3.1-bp153.2.3.1.s390x", product: { name: "pdns-backend-godbc-4.3.1-bp153.2.3.1.s390x", product_id: "pdns-backend-godbc-4.3.1-bp153.2.3.1.s390x", }, }, { category: "product_version", name: "pdns-backend-ldap-4.3.1-bp153.2.3.1.s390x", product: { name: "pdns-backend-ldap-4.3.1-bp153.2.3.1.s390x", product_id: "pdns-backend-ldap-4.3.1-bp153.2.3.1.s390x", }, }, { category: "product_version", name: "pdns-backend-lua-4.3.1-bp153.2.3.1.s390x", product: { name: "pdns-backend-lua-4.3.1-bp153.2.3.1.s390x", product_id: "pdns-backend-lua-4.3.1-bp153.2.3.1.s390x", }, }, { category: "product_version", name: "pdns-backend-mysql-4.3.1-bp153.2.3.1.s390x", product: { name: "pdns-backend-mysql-4.3.1-bp153.2.3.1.s390x", product_id: "pdns-backend-mysql-4.3.1-bp153.2.3.1.s390x", }, }, { category: "product_version", name: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.s390x", product: { name: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.s390x", product_id: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.s390x", }, }, { category: "product_version", name: "pdns-backend-remote-4.3.1-bp153.2.3.1.s390x", product: { name: "pdns-backend-remote-4.3.1-bp153.2.3.1.s390x", product_id: "pdns-backend-remote-4.3.1-bp153.2.3.1.s390x", }, }, { category: "product_version", name: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.s390x", product: { name: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.s390x", product_id: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.s390x", }, }, { category: "product_version", name: "libSDL2-2_0-0-2.0.8-11.3.1.s390x", product: { name: "libSDL2-2_0-0-2.0.8-11.3.1.s390x", product_id: "libSDL2-2_0-0-2.0.8-11.3.1.s390x", }, }, { category: "product_version", name: "libSDL2-devel-2.0.8-11.3.1.s390x", product: { name: "libSDL2-devel-2.0.8-11.3.1.s390x", product_id: "libSDL2-devel-2.0.8-11.3.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "pdns-4.3.1-bp153.2.3.1.x86_64", product: { name: "pdns-4.3.1-bp153.2.3.1.x86_64", product_id: "pdns-4.3.1-bp153.2.3.1.x86_64", }, }, { category: "product_version", name: "pdns-backend-geoip-4.3.1-bp153.2.3.1.x86_64", product: { name: "pdns-backend-geoip-4.3.1-bp153.2.3.1.x86_64", product_id: "pdns-backend-geoip-4.3.1-bp153.2.3.1.x86_64", }, }, { category: "product_version", name: "pdns-backend-godbc-4.3.1-bp153.2.3.1.x86_64", product: { name: "pdns-backend-godbc-4.3.1-bp153.2.3.1.x86_64", product_id: "pdns-backend-godbc-4.3.1-bp153.2.3.1.x86_64", }, }, { category: "product_version", name: "pdns-backend-ldap-4.3.1-bp153.2.3.1.x86_64", product: { name: "pdns-backend-ldap-4.3.1-bp153.2.3.1.x86_64", product_id: "pdns-backend-ldap-4.3.1-bp153.2.3.1.x86_64", }, }, { category: "product_version", name: "pdns-backend-lua-4.3.1-bp153.2.3.1.x86_64", product: { name: "pdns-backend-lua-4.3.1-bp153.2.3.1.x86_64", product_id: "pdns-backend-lua-4.3.1-bp153.2.3.1.x86_64", }, }, { category: "product_version", name: "pdns-backend-mysql-4.3.1-bp153.2.3.1.x86_64", product: { name: "pdns-backend-mysql-4.3.1-bp153.2.3.1.x86_64", product_id: "pdns-backend-mysql-4.3.1-bp153.2.3.1.x86_64", }, }, { category: "product_version", name: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.x86_64", product: { name: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.x86_64", product_id: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.x86_64", }, }, { category: "product_version", name: "pdns-backend-remote-4.3.1-bp153.2.3.1.x86_64", product: { name: "pdns-backend-remote-4.3.1-bp153.2.3.1.x86_64", product_id: "pdns-backend-remote-4.3.1-bp153.2.3.1.x86_64", }, }, { category: "product_version", name: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.x86_64", product: { name: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.x86_64", product_id: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.x86_64", }, }, { category: "product_version", name: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64", product: { name: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64", product_id: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64", }, }, { category: "product_version", name: "libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", product: { name: "libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", product_id: "libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", }, }, { category: "product_version", name: "libSDL2-devel-2.0.8-11.3.1.x86_64", product: { name: "libSDL2-devel-2.0.8-11.3.1.x86_64", product_id: "libSDL2-devel-2.0.8-11.3.1.x86_64", }, }, { category: "product_version", name: "libSDL2-devel-32bit-2.0.8-11.3.1.x86_64", product: { name: "libSDL2-devel-32bit-2.0.8-11.3.1.x86_64", product_id: "libSDL2-devel-32bit-2.0.8-11.3.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Package Hub 15 SP3", product: { name: "SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3", }, }, { category: "product_name", name: "openSUSE Leap 15.3", product: { name: "openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3", product_identification_helper: { cpe: "cpe:/o:opensuse:leap:15.3", }, }, }, { category: "product_name", name: "openSUSE Leap 15.3", product: { name: "openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3", product_identification_helper: { cpe: "cpe:/o:opensuse:leap:15.3", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "pdns-4.3.1-bp153.2.3.1.aarch64 as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-4.3.1-bp153.2.3.1.ppc64le as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-4.3.1-bp153.2.3.1.s390x as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-4.3.1-bp153.2.3.1.x86_64 as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-geoip-4.3.1-bp153.2.3.1.aarch64 as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-backend-geoip-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-geoip-4.3.1-bp153.2.3.1.ppc64le as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-backend-geoip-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-geoip-4.3.1-bp153.2.3.1.s390x as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-backend-geoip-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-geoip-4.3.1-bp153.2.3.1.x86_64 as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-backend-geoip-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-godbc-4.3.1-bp153.2.3.1.aarch64 as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-backend-godbc-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-godbc-4.3.1-bp153.2.3.1.ppc64le as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-backend-godbc-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-godbc-4.3.1-bp153.2.3.1.s390x as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-backend-godbc-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-godbc-4.3.1-bp153.2.3.1.x86_64 as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-backend-godbc-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-ldap-4.3.1-bp153.2.3.1.aarch64 as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-backend-ldap-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-ldap-4.3.1-bp153.2.3.1.ppc64le as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-backend-ldap-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-ldap-4.3.1-bp153.2.3.1.s390x as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-backend-ldap-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-ldap-4.3.1-bp153.2.3.1.x86_64 as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-backend-ldap-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-lua-4.3.1-bp153.2.3.1.aarch64 as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-backend-lua-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-lua-4.3.1-bp153.2.3.1.ppc64le as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-backend-lua-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-lua-4.3.1-bp153.2.3.1.s390x as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-backend-lua-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-lua-4.3.1-bp153.2.3.1.x86_64 as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-backend-lua-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-mysql-4.3.1-bp153.2.3.1.aarch64 as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-backend-mysql-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-mysql-4.3.1-bp153.2.3.1.ppc64le as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-backend-mysql-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-mysql-4.3.1-bp153.2.3.1.s390x as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-backend-mysql-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-mysql-4.3.1-bp153.2.3.1.x86_64 as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-backend-mysql-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.aarch64 as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.ppc64le as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.s390x as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.x86_64 as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-remote-4.3.1-bp153.2.3.1.aarch64 as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-backend-remote-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-remote-4.3.1-bp153.2.3.1.ppc64le as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-backend-remote-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-remote-4.3.1-bp153.2.3.1.s390x as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-backend-remote-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-remote-4.3.1-bp153.2.3.1.x86_64 as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-backend-remote-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.aarch64 as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.ppc64le as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.s390x as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.x86_64 as component of SUSE Package Hub 15 SP3", product_id: "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "SUSE Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "pdns-4.3.1-bp153.2.3.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-4.3.1-bp153.2.3.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-4.3.1-bp153.2.3.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-4.3.1-bp153.2.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-geoip-4.3.1-bp153.2.3.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-backend-geoip-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-geoip-4.3.1-bp153.2.3.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-backend-geoip-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-geoip-4.3.1-bp153.2.3.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-backend-geoip-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-geoip-4.3.1-bp153.2.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-backend-geoip-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-godbc-4.3.1-bp153.2.3.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-backend-godbc-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-godbc-4.3.1-bp153.2.3.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-backend-godbc-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-godbc-4.3.1-bp153.2.3.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-backend-godbc-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-godbc-4.3.1-bp153.2.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-backend-godbc-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-ldap-4.3.1-bp153.2.3.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-backend-ldap-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-ldap-4.3.1-bp153.2.3.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-backend-ldap-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-ldap-4.3.1-bp153.2.3.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-backend-ldap-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-ldap-4.3.1-bp153.2.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-backend-ldap-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-lua-4.3.1-bp153.2.3.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-backend-lua-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-lua-4.3.1-bp153.2.3.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-backend-lua-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-lua-4.3.1-bp153.2.3.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-backend-lua-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-lua-4.3.1-bp153.2.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-backend-lua-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-mysql-4.3.1-bp153.2.3.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-backend-mysql-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-mysql-4.3.1-bp153.2.3.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-backend-mysql-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-mysql-4.3.1-bp153.2.3.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-backend-mysql-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-mysql-4.3.1-bp153.2.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-backend-mysql-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-remote-4.3.1-bp153.2.3.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-backend-remote-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-remote-4.3.1-bp153.2.3.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-backend-remote-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-remote-4.3.1-bp153.2.3.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-backend-remote-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-remote-4.3.1-bp153.2.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-backend-remote-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.s390x", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.aarch64", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.ppc64le", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.s390x", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-32bit-2.0.8-11.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL2-devel-32bit-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-devel-32bit-2.0.8-11.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-4.3.1-bp153.2.3.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-4.3.1-bp153.2.3.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-4.3.1-bp153.2.3.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-4.3.1-bp153.2.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-geoip-4.3.1-bp153.2.3.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-backend-geoip-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-geoip-4.3.1-bp153.2.3.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-backend-geoip-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-geoip-4.3.1-bp153.2.3.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-backend-geoip-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-geoip-4.3.1-bp153.2.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-backend-geoip-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-godbc-4.3.1-bp153.2.3.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-backend-godbc-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-godbc-4.3.1-bp153.2.3.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-backend-godbc-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-godbc-4.3.1-bp153.2.3.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-backend-godbc-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-godbc-4.3.1-bp153.2.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-backend-godbc-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-ldap-4.3.1-bp153.2.3.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-backend-ldap-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-ldap-4.3.1-bp153.2.3.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-backend-ldap-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-ldap-4.3.1-bp153.2.3.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-backend-ldap-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-ldap-4.3.1-bp153.2.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-backend-ldap-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-lua-4.3.1-bp153.2.3.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-backend-lua-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-lua-4.3.1-bp153.2.3.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-backend-lua-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-lua-4.3.1-bp153.2.3.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-backend-lua-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-lua-4.3.1-bp153.2.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-backend-lua-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-mysql-4.3.1-bp153.2.3.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-backend-mysql-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-mysql-4.3.1-bp153.2.3.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-backend-mysql-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-mysql-4.3.1-bp153.2.3.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-backend-mysql-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-mysql-4.3.1-bp153.2.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-backend-mysql-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-backend-postgresql-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-remote-4.3.1-bp153.2.3.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-backend-remote-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-remote-4.3.1-bp153.2.3.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-backend-remote-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-remote-4.3.1-bp153.2.3.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-backend-remote-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-remote-4.3.1-bp153.2.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-backend-remote-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.aarch64", }, product_reference: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.ppc64le", }, product_reference: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.s390x", }, product_reference: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.x86_64", }, product_reference: "pdns-backend-sqlite3-4.3.1-bp153.2.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.s390x", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-2_0-0-2.0.8-11.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.aarch64", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.ppc64le", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.s390x", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-2.0.8-11.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-devel-2.0.8-11.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "libSDL2-devel-32bit-2.0.8-11.3.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:libSDL2-devel-32bit-2.0.8-11.3.1.x86_64", }, product_reference: "libSDL2-devel-32bit-2.0.8-11.3.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, ], }, vulnerabilities: [ { cve: "CVE-2020-14409", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-14409", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.s390x", "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "openSUSE Leap 15.3:libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.aarch64", "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.ppc64le", "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.s390x", "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.x86_64", "openSUSE Leap 15.3:libSDL2-devel-32bit-2.0.8-11.3.1.x86_64", "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-14409", url: "https://www.suse.com/security/cve/CVE-2020-14409", }, { category: "external", summary: "SUSE Bug 1181202 for CVE-2020-14409", url: "https://bugzilla.suse.com/1181202", }, { category: "external", summary: "SUSE Bug 1200204 for CVE-2020-14409", url: "https://bugzilla.suse.com/1200204", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.s390x", "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "openSUSE Leap 15.3:libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.aarch64", "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.ppc64le", "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.s390x", "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.x86_64", "openSUSE Leap 15.3:libSDL2-devel-32bit-2.0.8-11.3.1.x86_64", "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.s390x", "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "openSUSE Leap 15.3:libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.aarch64", "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.ppc64le", "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.s390x", "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.x86_64", "openSUSE Leap 15.3:libSDL2-devel-32bit-2.0.8-11.3.1.x86_64", "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-01-18T08:37:08Z", details: "important", }, ], title: "CVE-2020-14409", }, { cve: "CVE-2020-14410", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-14410", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 2.0.12 has a heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP file.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.s390x", "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "openSUSE Leap 15.3:libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.aarch64", "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.ppc64le", "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.s390x", "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.x86_64", "openSUSE Leap 15.3:libSDL2-devel-32bit-2.0.8-11.3.1.x86_64", "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-14410", url: "https://www.suse.com/security/cve/CVE-2020-14410", }, { category: "external", summary: "SUSE Bug 1181201 for CVE-2020-14410", url: "https://bugzilla.suse.com/1181201", }, { category: "external", summary: "SUSE Bug 1200204 for CVE-2020-14410", url: "https://bugzilla.suse.com/1200204", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.s390x", "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "openSUSE Leap 15.3:libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.aarch64", "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.ppc64le", "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.s390x", "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.x86_64", "openSUSE Leap 15.3:libSDL2-devel-32bit-2.0.8-11.3.1.x86_64", "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-geoip-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-godbc-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-ldap-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-lua-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-mysql-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-remote-4.3.1-bp153.2.3.1.x86_64", "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.aarch64", "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.ppc64le", "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.s390x", "SUSE Package Hub 15 SP3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.aarch64", "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.ppc64le", "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.s390x", "openSUSE Leap 15.3:libSDL2-2_0-0-2.0.8-11.3.1.x86_64", "openSUSE Leap 15.3:libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64", "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.aarch64", "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.ppc64le", "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.s390x", "openSUSE Leap 15.3:libSDL2-devel-2.0.8-11.3.1.x86_64", "openSUSE Leap 15.3:libSDL2-devel-32bit-2.0.8-11.3.1.x86_64", "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-geoip-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-godbc-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-ldap-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-lua-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-mysql-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-postgresql-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-remote-4.3.1-bp153.2.3.1.x86_64", "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.aarch64", "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.ppc64le", "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.s390x", "openSUSE Leap 15.3:pdns-backend-sqlite3-4.3.1-bp153.2.3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-01-18T08:37:08Z", details: "important", }, ], title: "CVE-2020-14410", }, ], }
opensuse-su-2024:13582-1
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
SDL2-devel-2.28.5-2.1 on GA media
Notes
Title of the patch
SDL2-devel-2.28.5-2.1 on GA media
Description of the patch
These are all security issues fixed in the SDL2-devel-2.28.5-2.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-13582
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "SDL2-devel-2.28.5-2.1 on GA media", title: "Title of the patch", }, { category: "description", text: "These are all security issues fixed in the SDL2-devel-2.28.5-2.1 package on the GA media of openSUSE Tumbleweed.", title: "Description of the patch", }, { category: "details", text: "openSUSE-Tumbleweed-2024-13582", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_13582-1.json", }, { category: "self", summary: "SUSE CVE CVE-2019-7572 page", url: "https://www.suse.com/security/cve/CVE-2019-7572/", }, { category: "self", summary: "SUSE CVE CVE-2019-7573 page", url: "https://www.suse.com/security/cve/CVE-2019-7573/", }, { category: "self", summary: "SUSE CVE CVE-2019-7574 page", url: "https://www.suse.com/security/cve/CVE-2019-7574/", }, { category: "self", summary: "SUSE CVE CVE-2019-7575 page", url: "https://www.suse.com/security/cve/CVE-2019-7575/", }, { category: "self", summary: "SUSE CVE CVE-2019-7577 page", url: "https://www.suse.com/security/cve/CVE-2019-7577/", }, { category: "self", summary: "SUSE CVE CVE-2019-7578 page", url: "https://www.suse.com/security/cve/CVE-2019-7578/", }, { category: "self", summary: "SUSE CVE CVE-2019-7636 page", url: "https://www.suse.com/security/cve/CVE-2019-7636/", }, { category: "self", summary: "SUSE CVE CVE-2019-7637 page", url: "https://www.suse.com/security/cve/CVE-2019-7637/", }, { category: "self", summary: "SUSE CVE CVE-2020-14409 page", url: "https://www.suse.com/security/cve/CVE-2020-14409/", }, { category: "self", summary: "SUSE CVE CVE-2020-14410 page", url: "https://www.suse.com/security/cve/CVE-2020-14410/", }, { category: "self", summary: "SUSE CVE CVE-2021-33657 page", url: "https://www.suse.com/security/cve/CVE-2021-33657/", }, { category: "self", summary: "SUSE CVE CVE-2022-4743 page", url: "https://www.suse.com/security/cve/CVE-2022-4743/", }, ], title: "SDL2-devel-2.28.5-2.1 on GA media", tracking: { current_release_date: "2024-06-15T00:00:00Z", generator: { date: "2024-06-15T00:00:00Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "openSUSE-SU-2024:13582-1", initial_release_date: "2024-06-15T00:00:00Z", revision_history: [ { date: "2024-06-15T00:00:00Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "SDL2-devel-2.28.5-2.1.aarch64", product: { name: "SDL2-devel-2.28.5-2.1.aarch64", product_id: "SDL2-devel-2.28.5-2.1.aarch64", }, }, { category: "product_version", name: "SDL2-devel-32bit-2.28.5-2.1.aarch64", product: { name: "SDL2-devel-32bit-2.28.5-2.1.aarch64", product_id: "SDL2-devel-32bit-2.28.5-2.1.aarch64", }, }, { category: "product_version", name: "libSDL2-2_0-0-2.28.5-2.1.aarch64", product: { name: "libSDL2-2_0-0-2.28.5-2.1.aarch64", product_id: "libSDL2-2_0-0-2.28.5-2.1.aarch64", }, }, { category: "product_version", name: "libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", product: { name: "libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", product_id: "libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "SDL2-devel-2.28.5-2.1.ppc64le", product: { name: "SDL2-devel-2.28.5-2.1.ppc64le", product_id: "SDL2-devel-2.28.5-2.1.ppc64le", }, }, { category: "product_version", name: "SDL2-devel-32bit-2.28.5-2.1.ppc64le", product: { name: "SDL2-devel-32bit-2.28.5-2.1.ppc64le", product_id: "SDL2-devel-32bit-2.28.5-2.1.ppc64le", }, }, { category: "product_version", name: "libSDL2-2_0-0-2.28.5-2.1.ppc64le", product: { name: "libSDL2-2_0-0-2.28.5-2.1.ppc64le", product_id: "libSDL2-2_0-0-2.28.5-2.1.ppc64le", }, }, { category: "product_version", name: "libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", product: { name: "libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", product_id: "libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "SDL2-devel-2.28.5-2.1.s390x", product: { name: "SDL2-devel-2.28.5-2.1.s390x", product_id: "SDL2-devel-2.28.5-2.1.s390x", }, }, { category: "product_version", name: "SDL2-devel-32bit-2.28.5-2.1.s390x", product: { name: "SDL2-devel-32bit-2.28.5-2.1.s390x", product_id: "SDL2-devel-32bit-2.28.5-2.1.s390x", }, }, { category: "product_version", name: "libSDL2-2_0-0-2.28.5-2.1.s390x", product: { name: "libSDL2-2_0-0-2.28.5-2.1.s390x", product_id: "libSDL2-2_0-0-2.28.5-2.1.s390x", }, }, { category: "product_version", name: "libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", product: { name: "libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", product_id: "libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "SDL2-devel-2.28.5-2.1.x86_64", product: { name: "SDL2-devel-2.28.5-2.1.x86_64", product_id: "SDL2-devel-2.28.5-2.1.x86_64", }, }, { category: "product_version", name: "SDL2-devel-32bit-2.28.5-2.1.x86_64", product: { name: "SDL2-devel-32bit-2.28.5-2.1.x86_64", product_id: "SDL2-devel-32bit-2.28.5-2.1.x86_64", }, }, { category: "product_version", name: "libSDL2-2_0-0-2.28.5-2.1.x86_64", product: { name: "libSDL2-2_0-0-2.28.5-2.1.x86_64", product_id: "libSDL2-2_0-0-2.28.5-2.1.x86_64", }, }, { category: "product_version", name: "libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", product: { name: "libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", product_id: "libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "openSUSE Tumbleweed", product: { name: "openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed", product_identification_helper: { cpe: "cpe:/o:opensuse:tumbleweed", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "SDL2-devel-2.28.5-2.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", }, product_reference: "SDL2-devel-2.28.5-2.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "SDL2-devel-2.28.5-2.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", }, product_reference: "SDL2-devel-2.28.5-2.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "SDL2-devel-2.28.5-2.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", }, product_reference: "SDL2-devel-2.28.5-2.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "SDL2-devel-2.28.5-2.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", }, product_reference: "SDL2-devel-2.28.5-2.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "SDL2-devel-32bit-2.28.5-2.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", }, product_reference: "SDL2-devel-32bit-2.28.5-2.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "SDL2-devel-32bit-2.28.5-2.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", }, product_reference: "SDL2-devel-32bit-2.28.5-2.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "SDL2-devel-32bit-2.28.5-2.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", }, product_reference: "SDL2-devel-32bit-2.28.5-2.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "SDL2-devel-32bit-2.28.5-2.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", }, product_reference: "SDL2-devel-32bit-2.28.5-2.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.28.5-2.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", }, product_reference: "libSDL2-2_0-0-2.28.5-2.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.28.5-2.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", }, product_reference: "libSDL2-2_0-0-2.28.5-2.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.28.5-2.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", }, product_reference: "libSDL2-2_0-0-2.28.5-2.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-2.28.5-2.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", }, product_reference: "libSDL2-2_0-0-2.28.5-2.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", }, product_reference: "libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", }, product_reference: "libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-32bit-2.28.5-2.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", }, product_reference: "libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", }, product_reference: "libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, ], }, vulnerabilities: [ { cve: "CVE-2019-7572", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-7572", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a buffer over-read in IMA_ADPCM_nibble in audio/SDL_wave.c.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-7572", url: "https://www.suse.com/security/cve/CVE-2019-7572", }, { category: "external", summary: "SUSE Bug 1124806 for CVE-2019-7572", url: "https://bugzilla.suse.com/1124806", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.4, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L", version: "3.0", }, products: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "low", }, ], title: "CVE-2019-7572", }, { cve: "CVE-2019-7573", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-7573", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c (inside the wNumCoef loop).", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-7573", url: "https://www.suse.com/security/cve/CVE-2019-7573", }, { category: "external", summary: "SUSE Bug 1124805 for CVE-2019-7573", url: "https://bugzilla.suse.com/1124805", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.4, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L", version: "3.0", }, products: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2019-7573", }, { cve: "CVE-2019-7574", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-7574", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in IMA_ADPCM_decode in audio/SDL_wave.c.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-7574", url: "https://www.suse.com/security/cve/CVE-2019-7574", }, { category: "external", summary: "SUSE Bug 1124803 for CVE-2019-7574", url: "https://bugzilla.suse.com/1124803", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.4, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L", version: "3.0", }, products: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2019-7574", }, { cve: "CVE-2019-7575", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-7575", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer overflow in MS_ADPCM_decode in audio/SDL_wave.c.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-7575", url: "https://www.suse.com/security/cve/CVE-2019-7575", }, { category: "external", summary: "SUSE Bug 1124802 for CVE-2019-7575", url: "https://bugzilla.suse.com/1124802", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L", version: "3.0", }, products: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2019-7575", }, { cve: "CVE-2019-7577", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-7577", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a buffer over-read in SDL_LoadWAV_RW in audio/SDL_wave.c.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-7577", url: "https://www.suse.com/security/cve/CVE-2019-7577", }, { category: "external", summary: "SUSE Bug 1124800 for CVE-2019-7577", url: "https://bugzilla.suse.com/1124800", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.4, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L", version: "3.0", }, products: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2019-7577", }, { cve: "CVE-2019-7578", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-7578", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitIMA_ADPCM in audio/SDL_wave.c.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-7578", url: "https://www.suse.com/security/cve/CVE-2019-7578", }, { category: "external", summary: "SUSE Bug 1125099 for CVE-2019-7578", url: "https://bugzilla.suse.com/1125099", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.1, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", version: "3.0", }, products: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2019-7578", }, { cve: "CVE-2019-7636", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-7636", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in SDL_GetRGB in video/SDL_pixels.c.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-7636", url: "https://www.suse.com/security/cve/CVE-2019-7636", }, { category: "external", summary: "SUSE Bug 1124826 for CVE-2019-7636", url: "https://bugzilla.suse.com/1124826", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.4, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L", version: "3.0", }, products: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2019-7636", }, { cve: "CVE-2019-7637", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2019-7637", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer overflow in SDL_FillRect in video/SDL_surface.c.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2019-7637", url: "https://www.suse.com/security/cve/CVE-2019-7637", }, { category: "external", summary: "SUSE Bug 1124825 for CVE-2019-7637", url: "https://bugzilla.suse.com/1124825", }, { category: "external", summary: "SUSE Bug 1134135 for CVE-2019-7637", url: "https://bugzilla.suse.com/1134135", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L", version: "3.0", }, products: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2019-7637", }, { cve: "CVE-2020-14409", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-14409", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-14409", url: "https://www.suse.com/security/cve/CVE-2020-14409", }, { category: "external", summary: "SUSE Bug 1181202 for CVE-2020-14409", url: "https://bugzilla.suse.com/1181202", }, { category: "external", summary: "SUSE Bug 1200204 for CVE-2020-14409", url: "https://bugzilla.suse.com/1200204", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2020-14409", }, { cve: "CVE-2020-14410", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-14410", }, ], notes: [ { category: "general", text: "SDL (Simple DirectMedia Layer) through 2.0.12 has a heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP file.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-14410", url: "https://www.suse.com/security/cve/CVE-2020-14410", }, { category: "external", summary: "SUSE Bug 1181201 for CVE-2020-14410", url: "https://bugzilla.suse.com/1181201", }, { category: "external", summary: "SUSE Bug 1200204 for CVE-2020-14410", url: "https://bugzilla.suse.com/1200204", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2020-14410", }, { cve: "CVE-2021-33657", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-33657", }, ], notes: [ { category: "general", text: "There is a heap overflow problem in video/SDL_pixels.c in SDL (Simple DirectMedia Layer) 2.x to 2.0.18 versions. By crafting a malicious .BMP file, an attacker can cause the application using this library to crash, denial of service or Code execution.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-33657", url: "https://www.suse.com/security/cve/CVE-2021-33657", }, { category: "external", summary: "SUSE Bug 1198001 for CVE-2021-33657", url: "https://bugzilla.suse.com/1198001", }, { category: "external", summary: "SUSE Bug 1199105 for CVE-2021-33657", url: "https://bugzilla.suse.com/1199105", }, { category: "external", summary: "SUSE Bug 1200204 for CVE-2021-33657", url: "https://bugzilla.suse.com/1200204", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "important", }, ], title: "CVE-2021-33657", }, { cve: "CVE-2022-4743", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-4743", }, ], notes: [ { category: "general", text: "A potential memory leak issue was discovered in SDL2 in GLES_CreateTexture() function in SDL_render_gles.c. The vulnerability allows an attacker to cause a denial of service attack. The vulnerability affects SDL2 v2.0.4 and above. SDL-1.x are not affected.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-4743", url: "https://www.suse.com/security/cve/CVE-2022-4743", }, { category: "external", summary: "SUSE Bug 1206727 for CVE-2022-4743", url: "https://bugzilla.suse.com/1206727", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:SDL2-devel-32bit-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-2.28.5-2.1.x86_64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.aarch64", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.ppc64le", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.s390x", "openSUSE Tumbleweed:libSDL2-2_0-0-32bit-2.28.5-2.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2022-4743", }, ], }
fkie_cve-2020-14409
Vulnerability from fkie_nvd
Published
2021-01-19 20:15
Modified
2024-11-21 05:03
Severity ?
Summary
SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.
References
Impacted products
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:libsdl:simple_directmedia_layer:*:*:*:*:*:*:*:*", matchCriteriaId: "9E31AF92-F370-4233-9A36-40CB5DA3D1CA", versionEndIncluding: "2.0.20", versionStartIncluding: "2.0.12", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*", matchCriteriaId: "E460AA51-FCDA-46B9-AE97-E6676AA5E194", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", matchCriteriaId: "DEECE5FC-CACF-4496-A3E7-164736409252", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:starwindsoftware:starwind_virtual_san:v8:build12533:*:*:*:vsphere:*:*", matchCriteriaId: "0E5C2815-65C8-48D7-BF31-6104EDD0CBE5", vulnerable: true, }, { criteria: "cpe:2.3:a:starwindsoftware:starwind_virtual_san:v8:build12658:*:*:*:vsphere:*:*", matchCriteriaId: "6FF4A265-AFFD-4853-B3CE-A55E950E8B5B", vulnerable: true, }, { criteria: "cpe:2.3:a:starwindsoftware:starwind_virtual_san:v8:build12859:*:*:*:vsphere:*:*", matchCriteriaId: "E6484296-5BA8-408A-A087-A0D86BA50703", vulnerable: true, }, { criteria: "cpe:2.3:a:starwindsoftware:starwind_virtual_san:v8:build13170:*:*:*:vsphere:*:*", matchCriteriaId: "5D31D4A3-7D1E-472F-9BB6-AF889DA7C763", vulnerable: true, }, { criteria: "cpe:2.3:a:starwindsoftware:starwind_virtual_san:v8:build13586:*:*:*:vsphere:*:*", matchCriteriaId: "F67B6B43-FF39-4B05-8704-EDFCED4117E6", vulnerable: true, }, { criteria: "cpe:2.3:a:starwindsoftware:starwind_virtual_san:v8:build13861:*:*:*:vsphere:*:*", matchCriteriaId: "C79FA879-7855-467B-A98D-7D914940F9D3", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.", }, { lang: "es", value: "SDL (Simple DirectMedia Layer) versiones hasta 2.0.12, presenta un Desbordamiento de Enteros (y una corrupción de la pila de SDL_memcpy resultante) en SDL_BlitCopy en el archivo video/SDL_blit_copy.c por medio de un archivo .BMP diseñado", }, ], id: "CVE-2020-14409", lastModified: "2024-11-21T05:03:12.327", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "MEDIUM", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 6.8, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:M/Au:N/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 8.6, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: true, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 1.8, impactScore: 5.9, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2021-01-19T20:15:12.207", references: [ { source: "cve@mitre.org", tags: [ "Issue Tracking", "Vendor Advisory", ], url: "https://bugzilla.libsdl.org/show_bug.cgi?id=5200", }, { source: "cve@mitre.org", tags: [ "Patch", "Vendor Advisory", ], url: "https://hg.libsdl.org/SDL/rev/3f9b4e92c1d9", }, { source: "cve@mitre.org", tags: [ "Mailing List", "Third Party Advisory", ], url: "https://lists.debian.org/debian-lts-announce/2021/01/msg00024.html", }, { source: "cve@mitre.org", tags: [ "Mailing List", "Third Party Advisory", ], url: "https://lists.debian.org/debian-lts-announce/2023/02/msg00008.html", }, { source: "cve@mitre.org", tags: [ "Mailing List", "Third Party Advisory", ], url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5FS32YCEJLQ2FYUWSWYI2ZMQWQEAWJNR/", }, { source: "cve@mitre.org", tags: [ "Third Party Advisory", ], url: "https://security.gentoo.org/glsa/202107-55", }, { source: "cve@mitre.org", tags: [ "Third Party Advisory", ], url: "https://www.starwindsoftware.com/security/sw-20210325-0001/", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Issue Tracking", "Vendor Advisory", ], url: "https://bugzilla.libsdl.org/show_bug.cgi?id=5200", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Vendor Advisory", ], url: "https://hg.libsdl.org/SDL/rev/3f9b4e92c1d9", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Mailing List", "Third Party Advisory", ], url: "https://lists.debian.org/debian-lts-announce/2021/01/msg00024.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Mailing List", "Third Party Advisory", ], url: "https://lists.debian.org/debian-lts-announce/2023/02/msg00008.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Mailing List", "Third Party Advisory", ], url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5FS32YCEJLQ2FYUWSWYI2ZMQWQEAWJNR/", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://security.gentoo.org/glsa/202107-55", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://www.starwindsoftware.com/security/sw-20210325-0001/", }, ], sourceIdentifier: "cve@mitre.org", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-190", }, { lang: "en", value: "CWE-787", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
gsd-2020-14409
Vulnerability from gsd
Modified
2023-12-13 01:22
Details
SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.
Aliases
Aliases
{ GSD: { alias: "CVE-2020-14409", description: "SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.", id: "GSD-2020-14409", references: [ "https://www.suse.com/security/cve/CVE-2020-14409.html", "https://advisories.mageia.org/CVE-2020-14409.html", "https://security.archlinux.org/CVE-2020-14409", "https://ubuntu.com/security/CVE-2020-14409", ], }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2020-14409", ], details: "SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.", id: "GSD-2020-14409", modified: "2023-12-13T01:22:00.139906Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2020-14409", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "https://bugzilla.libsdl.org/show_bug.cgi?id=5200", refsource: "MISC", url: "https://bugzilla.libsdl.org/show_bug.cgi?id=5200", }, { name: "https://hg.libsdl.org/SDL/rev/3f9b4e92c1d9", refsource: "MISC", url: "https://hg.libsdl.org/SDL/rev/3f9b4e92c1d9", }, { name: "[debian-lts-announce] 20210130 [SECURITY] [DLA 2536-1] libsdl2 security update", refsource: "MLIST", url: "https://lists.debian.org/debian-lts-announce/2021/01/msg00024.html", }, { name: "FEDORA-2021-9d65b22041", refsource: "FEDORA", url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5FS32YCEJLQ2FYUWSWYI2ZMQWQEAWJNR/", }, { name: "GLSA-202107-55", refsource: "GENTOO", url: "https://security.gentoo.org/glsa/202107-55", }, { name: "https://www.starwindsoftware.com/security/sw-20210325-0001/", refsource: "MISC", url: "https://www.starwindsoftware.com/security/sw-20210325-0001/", }, { name: "[debian-lts-announce] 20230208 [SECURITY] [DLA 3314-1] libsdl2 security update", refsource: "MLIST", url: "https://lists.debian.org/debian-lts-announce/2023/02/msg00008.html", }, ], }, }, "nvd.nist.gov": { configurations: { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:libsdl:simple_directmedia_layer:*:*:*:*:*:*:*:*", cpe_name: [], versionEndIncluding: "2.0.12", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:starwindsoftware:starwind_virtual_san:v8:build12533:*:*:*:vsphere:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:starwindsoftware:starwind_virtual_san:v8:build12658:*:*:*:vsphere:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:starwindsoftware:starwind_virtual_san:v8:build12859:*:*:*:vsphere:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:starwindsoftware:starwind_virtual_san:v8:build13170:*:*:*:vsphere:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:starwindsoftware:starwind_virtual_san:v8:build13586:*:*:*:vsphere:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:a:starwindsoftware:starwind_virtual_san:v8:build13861:*:*:*:vsphere:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, ], }, cve: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2020-14409", }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "en", value: "SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "en", value: "CWE-787", }, { lang: "en", value: "CWE-190", }, ], }, ], }, references: { reference_data: [ { name: "https://bugzilla.libsdl.org/show_bug.cgi?id=5200", refsource: "MISC", tags: [ "Issue Tracking", "Vendor Advisory", ], url: "https://bugzilla.libsdl.org/show_bug.cgi?id=5200", }, { name: "https://hg.libsdl.org/SDL/rev/3f9b4e92c1d9", refsource: "MISC", tags: [ "Patch", "Vendor Advisory", ], url: "https://hg.libsdl.org/SDL/rev/3f9b4e92c1d9", }, { name: "[debian-lts-announce] 20210130 [SECURITY] [DLA 2536-1] libsdl2 security update", refsource: "MLIST", tags: [ "Mailing List", "Third Party Advisory", ], url: "https://lists.debian.org/debian-lts-announce/2021/01/msg00024.html", }, { name: "FEDORA-2021-9d65b22041", refsource: "FEDORA", tags: [ "Mailing List", "Third Party Advisory", ], url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5FS32YCEJLQ2FYUWSWYI2ZMQWQEAWJNR/", }, { name: "GLSA-202107-55", refsource: "GENTOO", tags: [ "Third Party Advisory", ], url: "https://security.gentoo.org/glsa/202107-55", }, { name: "https://www.starwindsoftware.com/security/sw-20210325-0001/", refsource: "MISC", tags: [ "Third Party Advisory", ], url: "https://www.starwindsoftware.com/security/sw-20210325-0001/", }, { name: "[debian-lts-announce] 20230208 [SECURITY] [DLA 3314-1] libsdl2 security update", refsource: "MLIST", tags: [], url: "https://lists.debian.org/debian-lts-announce/2023/02/msg00008.html", }, ], }, }, impact: { baseMetricV2: { acInsufInfo: false, cvssV2: { accessComplexity: "MEDIUM", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 6.8, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:M/Au:N/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 8.6, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "MEDIUM", userInteractionRequired: true, }, baseMetricV3: { cvssV3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 1.8, impactScore: 5.9, }, }, lastModifiedDate: "2023-02-09T02:17Z", publishedDate: "2021-01-19T20:15Z", }, }, }
ghsa-3656-jvhv-q239
Vulnerability from github
Published
2022-05-24 17:39
Modified
2024-06-27 15:30
Severity ?
Details
SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.
{ affected: [], aliases: [ "CVE-2020-14409", ], database_specific: { cwe_ids: [ "CWE-190", "CWE-787", ], github_reviewed: false, github_reviewed_at: null, nvd_published_at: "2021-01-19T20:15:00Z", severity: "HIGH", }, details: "SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP file.", id: "GHSA-3656-jvhv-q239", modified: "2024-06-27T15:30:35Z", published: "2022-05-24T17:39:25Z", references: [ { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2020-14409", }, { type: "WEB", url: "https://bugzilla.libsdl.org/show_bug.cgi?id=5200", }, { type: "WEB", url: "https://hg.libsdl.org/SDL/rev/3f9b4e92c1d9", }, { type: "WEB", url: "https://lists.debian.org/debian-lts-announce/2021/01/msg00024.html", }, { type: "WEB", url: "https://lists.debian.org/debian-lts-announce/2023/02/msg00008.html", }, { type: "WEB", url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5FS32YCEJLQ2FYUWSWYI2ZMQWQEAWJNR", }, { type: "WEB", url: "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5FS32YCEJLQ2FYUWSWYI2ZMQWQEAWJNR", }, { type: "WEB", url: "https://security.gentoo.org/glsa/202107-55", }, { type: "WEB", url: "https://www.starwindsoftware.com/security/sw-20210325-0001", }, ], schema_version: "1.4.0", severity: [ { score: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", type: "CVSS_V3", }, ], }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.