Title: SDL 2: Multiple vulnerabilities ([glsa=202107-55]GLSA 202107-55[/glsa])
Severity: low
Exploitable: remote
Date: 2021-07-24
Bug(s): #766204
ID: 202107-55
Synopsis
Multiple vulnerabilities have been found in libsdl2, the worst of
which could result in a Denial of Service condition.
Background
Simple DirectMedia Layer is a cross-platform development library
designed to provide low level access to audio, keyboard, mouse, joystick,
and graphics hardware via OpenGL and Direct3D.
Affected Packages
Package: media-libs/libsdl2
Vulnerable: < 2.0.14-r1
Unaffected: >= 2.0.14-r1
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in SDL 2. Please review
the CVE identifiers referenced below for details.
Impact
Please review the referenced CVE identifiers for details.
Workaround
There is no known workaround at this time.
Resolution
All SDL 2 users should upgrade to the latest version:
Code: Select all
# emerge --sync
# emerge --ask --oneshot --verbose ">=media-libs/libsdl2-2.0.14-r1"
References
CVE-2020-14409
CVE-2020-14410