7397 moderate openSUSE Leap 42.3 Update This update for SDL2 fixes the following issues: - CVE-2017-2888: An exploitable integer overflow vulnerability exists when creating a new RGB Surface in SDL. A specially crafted file can cause an integer overflow resulting in too little memory being allocated which can lead to a buffer overflow and potential code execution. An attacker can provide a specially crafted image file to trigger this vulnerability. (bsc#1062784) SDL2-2.0.3-14.1.src.rpm SDL2-debugsource-2.0.3-14.1.i586.rpm libSDL2-2_0-0-2.0.3-14.1.i586.rpm libSDL2-2_0-0-32bit-2.0.3-14.1.x86_64.rpm libSDL2-2_0-0-debuginfo-2.0.3-14.1.i586.rpm libSDL2-2_0-0-debuginfo-32bit-2.0.3-14.1.x86_64.rpm libSDL2-devel-2.0.3-14.1.i586.rpm libSDL2-devel-32bit-2.0.3-14.1.x86_64.rpm SDL2-debugsource-2.0.3-14.1.x86_64.rpm libSDL2-2_0-0-2.0.3-14.1.x86_64.rpm libSDL2-2_0-0-debuginfo-2.0.3-14.1.x86_64.rpm libSDL2-devel-2.0.3-14.1.x86_64.rpm