FEDORA-EPEL-2018-20c3b6be2a

security update in Fedora EPEL 7 for SDL2, SDL2_gfx, & 2 more

Status: stable a year ago

SDL2 refresh for EPEL 7: update to latest upstream releases, fixing a number of security issues, and enabling new features based on RHEL 7.5: wayland, vulkan, etc.

Comments 9

This update has been submitted for testing by pwalter.

pwalter edited this update.

pwalter edited this update.

This update has been pushed to testing.

no regressions noted with wesnoth

karma: +1

This update has been submitted for batched by bodhi.

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
+2
stable threshold: 2
unstable threshold: -3
Autopush (karma)
Enabled
Autopush (time)
Disabled
Dates
submitted a year ago
in testing a year ago
in stable a year ago
modified a year ago

Related Bugs 12

00 #1500453 CVE-2017-2887 SDL_image: Multiple vulnerabilities [epel-7]
00 #1500735 CVE-2017-2888 SDL2: SDL: Integer overflow while creating a new RGB surface [epel-7]
00 #1512015 SDL2_mixer sources bundle smpeg2
00 #1524386 SDL2 CMake files trigger CMP0004 policy failure (fixed in latest Fedora packages)
00 #1552133 CVE-2017-12122 SDL2_image: code execution in the ILBM image rendering [epel-7]
00 #1552168 CVE-2017-14441 SDL2_image: code execution vulnerability exists in the ICO image rendering [epel-7]
00 #1552172 CVE-2017-14440 SDL2_image: code execution in the ILBM image rendering [epel-7]
00 #1552182 CVE-2017-14449 SDL2_image: double-Free in the XCF image rendering [epel-7]
00 #1552186 CVE-2017-14448 SDL2_image: code execution in the XCF image rendering [epel-7]
00 #1552191 CVE-2017-14450 SDL2_image: buffer overflow in the GIF image parsing [epel-7]
00 #1552197 CVE-2017-14442 SDL2_image: code execution in the BMP image rendering [epel-7]
00 #1568145 CVE-2018-3837 CVE-2018-3838 CVE-2018-3839 SDL2_image: various flaws [epel-7]

Automated Test Results