[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 1714-2] libsdl2 regression update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : libsdl2
Version        : 2.0.2+dfsg1-6+deb8u2
CVE ID         : CVE-2019-7572 CVE-2019-7573 CVE-2019-7574 CVE-2019-7575
                 CVE-2019-7576 CVE-2019-7577 CVE-2019-7578 CVE-2019-7635
                 CVE-2019-7636 CVE-2019-7637 CVE-2019-7638

The update of libsdl2 released as DLA 1714-1 led to several regressions, as
reported by Avital Ostromich.  These regressions are caused by libsdl1.2
patches for CVE-2019-7637, CVE-2019-7635, CVE-2019-7638 and CVE-2019-7636 being
applied to libsdl2 without adaptations.

For Debian 8 "Jessie", this problem has been fixed in version
2.0.2+dfsg1-6+deb8u2.

We recommend that you upgrade your libsdl2 packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=MSWo
-----END PGP SIGNATURE-----


Reply to: