Lucene search

K

[email protected]NVD:CVE-2022-4743

HistoryJan 12, 2023 - 7:15 p.m.

CVE-2022-4743

2023-01-1219:15:24

CWE-401

[email protected]

web.nvd.nist.gov

sdl2

memory leak

denial of service

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.6 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

64.9%

A potential memory leak issue was discovered in SDL2 in GLES_CreateTexture() function in SDL_render_gles.c. The vulnerability allows an attacker to cause a denial of service attack. The vulnerability affects SDL2 v2.0.4 and above. SDL-1.x are not affected.

Affected configurations

NVD

Node

libsdlsimple_directmedia_layerRange2.0.4–2.26.0

Node

redhatenterprise_linuxMatch9.0

References

access.redhat.com/security/cve/CVE-2022-4743

bugzilla.redhat.com/show_bug.cgi?id=2156290

github.com/libsdl-org/SDL/commit/00b67f55727bc0944c3266e2b875440da132ce4b

github.com/libsdl-org/SDL/pull/6269

lists.debian.org/debian-lts-announce/2023/02/msg00008.html

security.gentoo.org/glsa/202305-18

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.6 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

64.9%

Related for NVD:CVE-2022-4743

veracode1 nessus7 cvelist1 redos1 ubuntucve1 mageia1 amazon1 redhatcve1 openvas4 osv2 cve1 prion1 debiancve1 gentoo1 debian1 ics1