Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

CVE-2019-12219

Good to know:

icon

Date: May 20, 2019

An issue was discovered in libSDL2.a in Simple DirectMedia Layer (SDL) 2.0.9 when used in conjunction with libSDL2_image.a in SDL2_image 2.0.4. There is an invalid free error in the SDL function SDL_SetError_REAL at SDL_error.c.

Language: C#

Severity Score

Related Resources (13)

https://bugzilla.libsdl.org/show_bug.cgi?id=4625
https://security.alpinelinux.org/vuln/CVE-2019-12219
https://nvd.nist.gov/vuln/detail/CVE-2019-12219
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WJ2VRD57UOBT72JUC2DIFHEFCH4N64SW/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GY6FDFPYUJ7YPY3XB5U75VJHBSVRVIKO/
https://security-tracker.debian.org/tracker/CVE-2019-12219
https://lists.debian.org/debian-lts-announce/2019/07/msg00026.html
https://lists.debian.org/debian-lts-announce/2019/07/msg00021.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WJ2VRD57UOBT72JUC2DIFHEFCH4N64SW/
https://people.canonical.com/~ubuntu-security/cve/CVE-2019-12219
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GY6FDFPYUJ7YPY3XB5U75VJHBSVRVIKO/
https://usn.ubuntu.com/4238-1/
https://www.mend.io/vulnerability-database/CVE-2019-12219

Severity Score

Weakness Type (CWE)

Double Free

CWE-415

Top Fix

icon

Upgrade Version

Upgrade to version SharpDL - 2.1.0;serafim/ffi-sdl - 2.0.0-beta1;TwistedLogik.Ultraviolet.SDL2.Native - no_fix;Ultz.Native.SDL - 2.0.14;Ultz.Native.SDL - 2.0.12-pre1;Veldrid.SDL2 - 4.1.0;emmauss.SDL2-CS - no_fix;SdlSharp - 0.12.64-alpha;BonEngineSharp - no_fix;ppy.SDL2-CS - 1.0.25;ppy.SDL2-CS - 1.0.75;FNA.Package - 21.1.0;fnalibs - 21.1.0;Xenko.Graphics - 3.1.0.1-beta01-0318+gdb83d963;Xenko.Graphics - 3.1.0.1-beta01-0396+g05e746a9;SharpDL-SDL2-CS - 1.0.10;OpenRA-SDL2-CS - 1.0.29;Stride.Graphics - 4.1.0.1728+g354f8c2e;SdlSharp.Redist - 0.10.6-alpha;ImGui.SdlCs - no_fix;Veldrid.Sdl2 - 4.0.0-beta1;sdl2.nuget.redist - 2.0.14

Learn More

CVSS v3.1

Base Score:
Attack Vector (AV): NETWORK
Attack Complexity (AC): LOW
Privileges Required (PR): NONE
User Interaction (UI): REQUIRED
Scope (S): UNCHANGED
Confidentiality (C): HIGH
Integrity (I): HIGH
Availability (A): HIGH

CVSS v2

Base Score:
Access Vector (AV): NETWORK
Access Complexity (AC): MEDIUM
Authentication (AU): NONE
Confidentiality (C): PARTIAL
Integrity (I): PARTIAL
Availability (A): PARTIAL
Additional information:

Do you need more information?

Contact Us