Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2021-33657 - log back

CVE-2021-33657 edited at 14 May 2022 22:16:11

Remote

-	Unknown
+	Local

CVE-2021-33657 created at 14 May 2022 22:13:18

Severity

+

High

Remote

+

Unknown

Type

+	Arbitrary code execution

Description

+	There is a heap overflow problem in video/SDL_pixels.c in SDL (Simple DirectMedia Layer) 2.x to 2.0.18 versions. By crafting a malicious .BMP file, an attacker can cause the application using this library to crash, denial of service or Code execution.

References

+	https://github.com/libsdl-org/SDL/commit/8c91cf7dba5193f5ce12d06db1336515851c9ee9

Notes