{"id":"MGASA-2018-0276","summary":"Updated SDL_image packages fix security vulnerability","details":"Multiple vulnerabilities have been discovered in the image loading library\nfor Simple DirectMedia Layer 1.2, which could result in denial of service\nor the execution of arbitrary code if malformed image files are opened\n(CVE-2017-12122, CVE-2017-14440, CVE-2017-14441, CVE-2017-14442,\nCVE-2017-14448, CVE-2017-14450, CVE-2018-3837, CVE-2018-3838,\nCVE-2018-3839).\n","modified":"2026-04-16T01:46:36.853960263Z","published":"2018-06-06T18:15:31Z","upstream":["CVE-2017-12122","CVE-2017-14440","CVE-2017-14441","CVE-2017-14442","CVE-2017-14448","CVE-2017-14450","CVE-2018-3837","CVE-2018-3838","CVE-2018-3839"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2018-0276.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=22967"},{"type":"WEB","url":"https://www.debian.org/security/2018/dsa-4184"}],"affected":[{"package":{"name":"SDL_image","ecosystem":"Mageia:5","purl":"pkg:rpm/mageia/SDL_image?arch=source&distro=mageia-5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.2.12-8.2.mga5"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2018-0276.json"}},{"package":{"name":"SDL_image","ecosystem":"Mageia:6","purl":"pkg:rpm/mageia/SDL_image?arch=source&distro=mageia-6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.2.12-9.2.mga6"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2018-0276.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}