Vulnerabilities > CVE-2018-3839 - Out-of-bounds Write vulnerability in multiple products
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
An exploitable code execution vulnerability exists in the XCF image rendering functionality of Simple DirectMedia Layer SDL2_image-2.0.2. A specially crafted XCF image can cause an out-of-bounds write on the heap, resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 | |
Application | 3 | |
OS | 2 |
Common Weakness Enumeration (CWE)
Nessus
NASL family SuSE Local Security Checks NASL id OPENSUSE-2018-1466.NASL description This update for SDL2_image fixes the following issues : Security issues fixed : - CVE-2018-3839: Fixed an exploitable code execution vulnerability that existed in the XCF image rendering functionality of the Simple DirectMedia Layer (bsc#1089087). - CVE-2018-3977: Fixed a possible code execution via creafted XCF image that could have caused a heap overflow (bsc#1114519). last seen 2020-06-05 modified 2018-11-26 plugin id 119141 published 2018-11-26 reporter This script is Copyright (C) 2018-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/119141 title openSUSE Security Update : SDL2_image (openSUSE-2018-1466) NASL family Debian Local Security Checks NASL id DEBIAN_DSA-4177.NASL description Multiple vulnerabilities have been discovered in the image loading library for Simple DirectMedia Layer 2, which could result in denial of service or the execution of arbitrary code if malformed image files are opened. last seen 2020-06-01 modified 2020-06-02 plugin id 109219 published 2018-04-23 reporter This script is Copyright (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/109219 title Debian DSA-4177-1 : libsdl2-image - security update NASL family Gentoo Local Security Checks NASL id GENTOO_GLSA-201903-17.NASL description The remote host is affected by the vulnerability described in GLSA-201903-17 (SDL2_Image: Multiple vulnerabilities) Multiple vulnerabilities have been discovered in SDL2_Image. Please review the CVE identifiers referenced below for details. Impact : A remote attacker, by enticing a user to process a specially crafted image file, could execute arbitrary code, cause a Denial of Service condition, or obtain sensitive information. Workaround : There is no known workaround at this time. last seen 2020-06-01 modified 2020-06-02 plugin id 123423 published 2019-03-28 reporter This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/123423 title GLSA-201903-17 : SDL2_Image: Multiple vulnerabilities NASL family SuSE Local Security Checks NASL id OPENSUSE-2018-1433.NASL description This update for SDL2_image fixes the following issues : Security issues fixed : - CVE-2018-3839: Fixed an exploitable code execution vulnerability that existed in the XCF image rendering functionality of the Simple DirectMedia Layer (bsc#1089087). - CVE-2018-3977: Fixed a possible code execution via creafted XCF image that could have caused a heap overflow (bsc#1114519). last seen 2020-06-05 modified 2018-11-21 plugin id 119083 published 2018-11-21 reporter This script is Copyright (C) 2018-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/119083 title openSUSE Security Update : SDL2_image (openSUSE-2018-1433) NASL family SuSE Local Security Checks NASL id OPENSUSE-2019-933.NASL description This update for SDL2_image fixes the following issues : Security issues fixed : - CVE-2018-3839: Fixed an exploitable code execution vulnerability that existed in the XCF image rendering functionality of the Simple DirectMedia Layer (bsc#1089087). - CVE-2018-3977: Fixed a possible code execution via creafted XCF image that could have caused a heap overflow (bsc#1114519). last seen 2020-06-01 modified 2020-06-02 plugin id 123381 published 2019-03-27 reporter This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/123381 title openSUSE Security Update : SDL2_image (openSUSE-2019-933) NASL family Debian Local Security Checks NASL id DEBIAN_DSA-4184.NASL description Multiple vulnerabilities have been discovered in the image loading library for Simple DirectMedia Layer 1.2, which could result in denial of service or the execution of arbitrary code if malformed image files are opened. last seen 2020-06-01 modified 2020-06-02 plugin id 109413 published 2018-04-30 reporter This script is Copyright (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/109413 title Debian DSA-4184-1 : sdl-image1.2 - security update
Talos
id | TALOS-2018-0521 |
last seen | 2019-05-29 |
published | 2018-04-10 |
reporter | Talos Intelligence |
source | http://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0521 |
title | Simple DirectMedia Layer SDL2_Image load_xcf_tile_rle bpp Code Execution Vulnerability |
References
- https://security.gentoo.org/glsa/201903-17
- https://security.gentoo.org/glsa/201903-17
- https://www.debian.org/security/2018/dsa-4177
- https://www.debian.org/security/2018/dsa-4177
- https://www.debian.org/security/2018/dsa-4184
- https://www.debian.org/security/2018/dsa-4184
- https://www.starwindsoftware.com/security/sw-20191008-0002/
- https://www.starwindsoftware.com/security/sw-20191008-0002/
- https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0521
- https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0521