alpine · CVE-2019-7577

Quick triage

Priority: high Published: Updated:

View at Official alpine advisory, NVD, CVE.org · CVE detail

Freshness: no update timestamp found; verify against the upstream OS advisory manually.

Tracker summary

CVE-2019-7577: 1 source package rows (sdl); 4 state rows across 4 repos (3.10-main, 3.11-main, 3.12-main, edge-community); fixed 4, open 0.

Description:

SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a buffer over-read in SDL_LoadWAV_RW in audio/SDL_wave.c.

cvelogic Threat Intelligence