High

DATE	CVE	VULNERABILITY TITLE	RISK
2019-07-03	CVE-2019-5052	Integer Overflow or Wraparound vulnerability in multiple products An exploitable integer overflow vulnerability exists when loading a PCX file in SDL2_image 2.0.4. network low complexity libsdl debian opensuse canonical CWE-190	8.8
2019-07-03	CVE-2019-5051	Improper Handling of Exceptional Conditions vulnerability in multiple products An exploitable heap-based buffer overflow vulnerability exists when loading a PCX file in SDL2_image, version 2.0.4. network low complexity libsdl debian opensuse canonical CWE-755	8.8
2019-05-20	CVE-2019-12219	Double Free vulnerability in Libsdl Sdl2 Image and Simple Directmedia Layer An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 when used in conjunction with libSDL2_image.a in SDL2_image 2.0.4. network low complexity libsdl CWE-415	8.8
2019-02-08	CVE-2019-7638	Out-of-bounds Read vulnerability in multiple products SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in Map1toN in video/SDL_pixels.c. network low complexity libsdl debian opensuse fedoraproject canonical CWE-125	8.8
2019-02-08	CVE-2019-7637	Out-of-bounds Write vulnerability in multiple products SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer overflow in SDL_FillRect in video/SDL_surface.c. network low complexity libsdl debian opensuse fedoraproject canonical CWE-787	8.8
2019-02-08	CVE-2019-7636	Out-of-bounds Read vulnerability in multiple products SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in SDL_GetRGB in video/SDL_pixels.c. network low complexity libsdl opensuse debian fedoraproject canonical CWE-125	8.1
2019-02-08	CVE-2019-7635	Out-of-bounds Read vulnerability in multiple products SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in Blit1to4 in video/SDL_blit_1.c. network low complexity libsdl opensuse debian fedoraproject canonical CWE-125	8.1
2019-02-07	CVE-2019-7578	Out-of-bounds Read vulnerability in multiple products SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitIMA_ADPCM in audio/SDL_wave.c. network low complexity libsdl opensuse debian fedoraproject canonical CWE-125	8.1
2019-02-07	CVE-2019-7577	Out-of-bounds Read vulnerability in multiple products SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a buffer over-read in SDL_LoadWAV_RW in audio/SDL_wave.c. network low complexity libsdl opensuse debian fedoraproject canonical CWE-125	8.8
2019-02-07	CVE-2019-7576	Out-of-bounds Read vulnerability in multiple products SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c (outside the wNumCoef loop). network low complexity libsdl debian opensuse fedoraproject canonical CWE-125	8.8