CVE-2022-4743
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-4743
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-4743.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-4743
- Downstream
- Related
- Published
- 2023-01-12T19:15:24Z
- Modified
- 2025-10-21T07:16:11.954447Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
A potential memory leak issue was discovered in SDL2 in GLESCreateTexture() function in SDLrender_gles.c. The vulnerability allows an attacker to cause a denial of service attack. The vulnerability affects SDL2 v2.0.4 and above. SDL-1.x are not affected.
- References
-
- https://access.redhat.com/security/cve/CVE-2022-4743
- https://bugzilla.redhat.com/show_bug.cgi?id=2156290
- https://github.com/libsdl-org/SDL/commit/00b67f55727bc0944c3266e2b875440da132ce4b
- https://github.com/libsdl-org/SDL/pull/6269
- https://security.gentoo.org/glsa/202305-18
- https://lists.debian.org/debian-lts-announce/2023/02/msg00008.html
Affected packages
Git / github.com/libsdl-org/sdl
Affected ranges
- Type
- GIT
- Repo
- https://github.com/libsdl-org/sdl
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
2.*
2.0.22-RC1
2.0.22-RC2
2.0.22-RC3
prerelease-2.*
prerelease-2.23.1
prerelease-2.23.2
release-2.*
release-2.0.0
release-2.0.1
release-2.0.10
release-2.0.12
release-2.0.14
release-2.0.16
release-2.0.18
release-2.0.2
release-2.0.20
release-2.0.22
release-2.0.3
release-2.0.4
release-2.0.5
release-2.0.6
release-2.0.7
release-2.0.8
release-2.0.9
release-2.24.0
Database specific
vanir_signatures
[
{
"signature_type": "Function",
"digest": {
"function_hash": "277409803952387624747477745203809669219",
"length": 2275.0
},
"target": {
"file": "src/render/opengles/SDL_render_gles.c",
"function": "GLES_CreateTexture"
},
"source": "https://github.com/libsdl-org/sdl/commit/00b67f55727bc0944c3266e2b875440da132ce4b",
"id": "CVE-2022-4743-ddf23b88",
"deprecated": false,
"signature_version": "v1"
},
{
"signature_type": "Line",
"digest": {
"threshold": 0.9,
"line_hashes": [
"142439381264004840443746353990143780546",
"197919423198006125967986276811948504706",
"64978979014250257653026401312700540746",
"42900681341288130968829736364560505798",
"223379653357618446599963554803443243461",
"54600067151669781258380147290063608473",
"291444013731186317572824921900267202966",
"162334293808190679126064066572291388596"
]
},
"target": {
"file": "src/render/opengles/SDL_render_gles.c"
},
"source": "https://github.com/libsdl-org/sdl/commit/00b67f55727bc0944c3266e2b875440da132ce4b",
"id": "CVE-2022-4743-ffa52585",
"deprecated": false,
"signature_version": "v1"
}
]