Headline
Ubuntu Security Notice USN-5586-1
Ubuntu Security Notice 5586-1 - It was discovered that SDL incorrectly handled memory. An attacker could potentially use this issue to cause a denial of service or other unexpected behavior.
==========================================================================Ubuntu Security Notice USN-5586-1August 29, 2022libsdl1.2 vulnerability==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 16.04 ESMSummary:SDL could be made to crash or behave unexpectedly.Software Description:- libsdl1.2: Simple DirectMedia LayerDetails:It was discovered that SDL (Simple DirectMedia Layer) incorrectly handled memory. An attacker could potentially use this issue to causea denial of service or other unexpected behavior.Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 16.04 ESM: libsdl1.2debian 1.2.15+dfsg1-3ubuntu0.1+esm2In general, a standard system update will make all the necessary changes.References: https://ubuntu.com/security/notices/USN-5586-1 CVE-2022-34568Related news
Gentoo Linux Security Advisory 202305-17
Gentoo Linux Security Advisory 202305-17 - Multiple vulnerabilities have been found in libsdl, the worst of which could result in arbitrary code execution. Versions less than 1.2.15_p20221201>= are affected.
CVE-2022-34568: A USE AFTER FREE BUG · Issue #863 · libsdl-org/SDL-1.2
SDL v1.2 was discovered to contain a use-after-free via the XFree function at /src/video/x11/SDL_x11yuv.c.