N/A

An exploitable integer overflow vulnerability exists when creating a new RGB Surface in SDL 2.0.5. A specially crafted file can cause an integer overflow resulting in too little memory being allocated which can lead to a buffer overflow and potential code execution. An attacker can provide a specially crafted image file to trigger this vulnerability.

N/A

N/A

Simple DirectMedia Layer 数字错误漏洞

Simple DirectMedia Layer（SDL）是跨平台开发库，它通过OpenGL和Direct3D对音频、键盘、鼠标和图形硬件的低级访问。 SDL 2.0.5版本中存在整数溢出漏洞。当创建RGB Surface时，攻击者可借助特制的文件利用该漏洞造成缓冲区溢出，可能执行代码。

N/A

N/A