CVE-2019-7574

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2019-7574
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-7574.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2019-7574
Downstream
Related
Published
2019-02-07T07:29:00.800Z
Modified
2026-02-22T08:22:21.296541Z
Severity
  • 8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in IMAADPCMdecode in audio/SDL_wave.c.

References

Affected packages

Git / github.com/libsdl-org/sdl

Affected ranges

Type
GIT
Repo
https://github.com/libsdl-org/sdl
Events
Introduced
1ad936eb29cf4506a7a103e8288d732f23e9c2b0
Last affected
c49ecf6f7c10b668ebd87b89dfc3c7bfd215cb75

Affected versions

release-2.*
release-2.0.0
release-2.0.1
release-2.0.2
release-2.0.3
release-2.0.4
release-2.0.5
release-2.0.6
release-2.0.7
release-2.0.8
release-2.0.9

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-7574.json"

Git / github.com/pnggroup/libpng

Affected ranges

Type
GIT
Repo
https://github.com/pnggroup/libpng
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
40b70d53737c52ad3c025b47c42b2c9a52fb5764

Affected versions

v0.*
v0.71
v0.81
v0.82
v0.85
v0.86
v0.87
v0.88
v0.89
v0.89c
v0.90
v0.96
v0.97
v0.97a
v0.97c
v0.98
v0.99
v0.99a
v0.99c
v0.99d
v0.99e
v0.99i
v0.99j
v0.99k
v0.99m
v0.99n
v0.99p
v1.*
v1.0.0
v1.0.0a
v1.0.0b
v1.0.1
v1.0.10
v1.0.10beta1
v1.0.10rc1
v1.0.11
v1.0.11beta1
v1.0.11beta2
v1.0.11beta3
v1.0.11rc1
v1.0.12beta1
v1.0.1a
v1.0.1b
v1.0.1c
v1.0.1d
v1.0.1e
v1.0.2
v1.0.2a
v1.0.2b
v1.0.3
v1.0.4
v1.0.4-pre1
v1.0.4-pre2
v1.0.4-pre3
v1.0.4c
v1.0.4d
v1.0.4d2
v1.0.4e
v1.0.4f
v1.0.5
v1.0.5-pre1
v1.0.5a
v1.0.5c
v1.0.5d
v1.0.5h
v1.0.5q
v1.0.5s
v1.0.6
v1.0.6a
v1.0.6d
v1.0.6e
v1.0.6f
v1.0.6g
v1.0.6h
v1.0.6i
v1.0.6j
v1.0.7
v1.0.7beta11
v1.0.7beta12
v1.0.7beta13
v1.0.7beta14
v1.0.7beta15
v1.0.7beta16
v1.0.7beta17
v1.0.7beta18
v1.0.7rc1
v1.0.7rc2
v1.0.8
v1.0.8beta1
v1.0.8beta2
v1.0.8beta3
v1.0.8beta4
v1.0.8rc1
v1.0.9
v1.0.9beta1
v1.0.9beta10
v1.0.9beta2
v1.0.9beta3
v1.0.9beta4
v1.0.9beta5
v1.0.9beta6
v1.0.9beta7
v1.0.9beta8
v1.0.9beta9
v1.0.9rc1
v1.0.9rc2
v1.00
v1.2.0
v1.2.0beta1
v1.2.0beta2
v1.2.0beta3
v1.2.0beta4
v1.2.0beta5
v1.2.0rc1
v1.2.1
v1.2.10
v1.2.10beta1
v1.2.10beta2
v1.2.10beta3
v1.2.10beta4
v1.2.10beta5
v1.2.10beta6
v1.2.10beta7
v1.2.10rc1
v1.2.10rc2
v1.2.10rc3
v1.2.11
v1.2.11beta1
v1.2.11beta2
v1.2.11beta2cos
v1.2.11beta3
v1.2.11beta4
v1.2.11rc1
v1.2.11rc2
v1.2.11rc3
v1.2.11rc5
v1.2.12
v1.2.13
v1.2.13beta1
v1.2.13rc1
v1.2.13rc2
v1.2.14
v1.2.14beta1
v1.2.14beta2
v1.2.14rc1
v1.2.15
v1.2.15beta1
v1.2.15beta2
v1.2.15beta3
v1.2.15beta4
v1.2.15beta5
v1.2.15beta6
v1.2.15rc1
v1.2.15rc2
v1.2.15rc3
v1.2.15rc4
v1.2.15rc5
v1.2.1beta1
v1.2.1beta2
v1.2.1beta3
v1.2.1beta4
v1.2.1rc1
v1.2.1rc2
v1.2.2
v1.2.2beta1
v1.2.2beta2
v1.2.2beta3
v1.2.2beta4
v1.2.2beta5
v1.2.2beta6
v1.2.2rc1
v1.2.3
v1.2.3rc1
v1.2.3rc2
v1.2.3rc3
v1.2.3rc4
v1.2.3rc5
v1.2.3rc6
v1.2.4
v1.2.4beta1
v1.2.4beta2
v1.2.4beta3
v1.2.4rc1
v1.2.5
v1.2.5beta1
v1.2.5beta2
v1.2.5rc1
v1.2.5rc2
v1.2.5rc3
v1.2.6
v1.2.6beta1
v1.2.6beta2
v1.2.6beta3
v1.2.6beta4
v1.2.6rc1
v1.2.6rc2
v1.2.6rc3
v1.2.6rc4
v1.2.6rc5
v1.2.7
v1.2.7beta1
v1.2.7beta2
v1.2.7rc1
v1.2.8
v1.2.8beta1
v1.2.8beta2
v1.2.8beta3
v1.2.8beta4
v1.2.8beta5
v1.2.8rc1
v1.2.8rc2
v1.2.8rc3
v1.2.8rc4
v1.2.8rc5
v1.2.9
v1.2.9beta1
v1.2.9beta10
v1.2.9beta11
v1.2.9beta2
v1.2.9beta3
v1.2.9beta4
v1.2.9beta5
v1.2.9beta6
v1.2.9beta7
v1.2.9beta8
v1.2.9beta9
v1.2.9rc1

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-7574.json"