godotengine/buildroot
1
0
Fork 0
mirror of https://github.com/godotengine/buildroot.git synced 2026-01-02 21:48:20 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
2017.08.2
buildroot/package/sdl2
History
Peter Korsgaard a532c29d7f sdl2: security bump to version 2.0.7 
Fixes CVE-2017-2888 - An exploitable integer overflow vulnerability exists
when creating a new RGB Surface in SDL 2.0.5.  A specially crafted file can
cause an integer overflow resulting in too little memory being allocated
which can lead to a buffer overflow and potential code execution.  An
attacker can provide a specially crafted image file to trigger this
vulnerability.

Also add a hash for the license file while we're at it.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit 07a9f0200c)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-11-15 19:41:36 +01:00
..
Config.in
sdl2.hash
sdl2: security bump to version 2.0.7
2017-11-15 19:41:36 +01:00
sdl2.mk
sdl2: security bump to version 2.0.7
2017-11-15 19:41:36 +01:00