CVE-2019-13626 – Gentoo Linux Security Advisory 201909-07

https://notcve.org/view.php?id=CVE-2019-13626

17 Jul 2019 — SDL (Simple DirectMedia Layer) 2.x through 2.0.9 has a heap-based buffer over-read in Fill_IMA_ADPCM_block, caused by an integer overflow in IMA_ADPCM_decode() in audio/SDL_wave.c. SDL (Simple DirectMedia Layer) versiones 2.x hasta 2.0.9, presenta un desbordamiento del búfer en la región heap de la memoria en Fill_IMA_ADPCM_block, causado por un desbordamiento de enteros en la función IMA_ADPCM_decode() en el archivo audio/SDL_wave.c. Multiple vulnerabilities have been found in Simple DirectMedia Layer, the... • http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00093.html • CWE-125: Out-of-bounds Read •