CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 1CVE-2019-13626
https://notcve.org/view.php?id=CVE-2019-13626
SDL (Simple DirectMedia Layer) 2.x through 2.0.9 has a heap-based buffer over-read in Fill_IMA_ADPCM_block, caused by an integer overflow in IMA_ADPCM_decode() in audio/SDL_wave.c. SDL (Simple DirectMedia Layer) versiones 2.x hasta 2.0.9, presenta un desbordamiento del búfer en la región heap de la memoria en Fill_IMA_ADPCM_block, causado por un desbordamiento de enteros en la función IMA_ADPCM_decode() en el archivo audio/SDL_wave.c. • http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00093.html http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00094.html https://bugzilla.libsdl.org/show_bug.cgi?id=4522 https://lists.debian.org/debian-lts-announce/2023/02/msg00008.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GY6FDFPYUJ7YPY3XB5U75VJHBSVRVIKO https://security.gentoo.org/glsa/201909-07 • CWE-125: Out-of-bounds Read •