Download
| Alert*
oval:org.secpod.oval:def:205252
The spice-gtk packages provide a GIMP Toolkit widget for Simple Protocol for Independent Computing Environments clients. Both Virtual Machine Manager and Virtual Machine Viewer can make use of this widget to access virtual machines using the SPICE protocol. The libgovirt packages contain a library ... oval:org.secpod.oval:def:205340 The spice-gtk packages provide a GIMP Toolkit widget for Simple Protocol for Independent Computing Environments clients. Both Virtual Machine Manager and Virtual Machine Viewer can make use of this widget to access virtual machines using the SPICE protocol. The libgovirt packages contain a library ... oval:org.secpod.oval:def:205347 The spice-gtk packages provide a GIMP Toolkit widget for Simple Protocol for Independent Computing Environments clients. Both Virtual Machine Manager and Virtual Machine Viewer can make use of this widget to access virtual machines using the SPICE protocol. The libgovirt packages contain a library ... oval:org.secpod.oval:def:503256 The spice-gtk packages provide a GIMP Toolkit widget for Simple Protocol for Independent Computing Environments clients. Both Virtual Machine Manager and Virtual Machine Viewer can make use of this widget to access virtual machines using the SPICE protocol. The libgovirt packages contain a library ... oval:org.secpod.oval:def:1504273 libgovirt [0.3.4-2] - Parse XML nodes automatically Related: rhbz#1427467 - Set detailed error message for async call Related: rhbz#1427467 spice-gtk [0.35-4] - Fix bad channel-reset on usbredir Resolves: rhbz#1625550 [0.35-3] - Fix insufficient encoding checks for LZ Resolves: rhbz#1598652 spice-vd ... oval:org.secpod.oval:def:503520 The spice-gtk packages provide a GIMP Toolkit widget for Simple Protocol for Independent Computing Environments clients. Both Virtual Machine Manager and Virtual Machine Viewer can make use of this widget to access virtual machines using the SPICE protocol. Security Fix: * spice-client: Insufficie ... oval:org.secpod.oval:def:205438 The spice-gtk packages provide a GIMP Toolkit widget for Simple Protocol for Independent Computing Environments clients. Both Virtual Machine Manager and Virtual Machine Viewer can make use of this widget to access virtual machines using the SPICE protocol. Security Fix: * spice-client: Insufficie ... oval:org.secpod.oval:def:205278 The spice-gtk packages provide a GIMP Toolkit widget for Simple Protocol for Independent Computing Environments clients. Both Virtual Machine Manager and Virtual Machine Viewer can make use of this widget to access virtual machines using the SPICE protocol. The libgovirt packages contain a library ... oval:org.secpod.oval:def:1701537 Multiple integer overflow and buffer overflow issues were discovered in spice-client's handling of LZ compressed frames. A malicious server could cause the client to crash or, potentially, execute arbitrary code oval:org.secpod.oval:def:1502797 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:1701174 Multiple integer overflow and buffer overflow issues were discovered in spice-client's handling of LZ compressed frames. A malicious server could cause the client to crash or, potentially, execute arbitrary code oval:org.secpod.oval:def:1701564 Multiple integer overflow and buffer overflow issues were discovered in spice-client's handling of LZ compressed frames. A malicious server could cause the client to crash or, potentially, execute arbitrary code oval:org.secpod.oval:def:1700274 Multiple integer overflow and buffer overflow issues were discovered in spice-client#039;s handling of LZ compressed frames. A malicious server could cause the client to crash or, potentially, execute arbitrary code oval:org.secpod.oval:def:1701176 Multiple integer overflow and buffer overflow issues were discovered in spice-client's handling of LZ compressed frames. A malicious server could cause the client to crash or, potentially, execute arbitrary code oval:org.secpod.oval:def:2000223 Multiple integer overflow and buffer overflow issues were discovered in spice-client"s handling of LZ compressed frames. A malicious server could cause the client to crash or, potentially, execute arbitrary code. oval:org.secpod.oval:def:89002198 This update for spice-gtk fixes the following issues: Security issues fixed: - CVE-2018-10873: Fix potential heap corruption when demarshalling - CVE-2018-10893: Avoid buffer overflow on image lz checks oval:org.secpod.oval:def:89002053 This update for spice fixes the following issues: Security issues fixed: - CVE-2018-10873: Fix potential heap corruption when demarshalling - CVE-2018-10893: Avoid buffer overflow on image lz checks oval:org.secpod.oval:def:89000455 This update for spice fixes the following issues: - CVE-2018-10873: Fixed a potential heap corruption when demarshalling - CVE-2018-10893: Fixed a buffer overflow on image lz checks oval:org.secpod.oval:def:89002417 This update for spice fixes the following issues: Security issues fixed: - CVE-2018-10873: Fix potential heap corruption when demarshalling - CVE-2018-10893: Avoid buffer overflow on image lz checks oval:org.secpod.oval:def:89002967 This update for spice-gtk fixes the following issues: - CVE-2018-10873: Fixed a potential heap corruption when demarshalling - CVE-2018-10893: Fixed a buffer overflow on image lz checks oval:org.secpod.oval:def:89049673 This update for spice fixes the following issues: Security issues fixed: - CVE-2018-10873: Fix potential heap corruption when demarshalling - CVE-2018-10893: Avoid buffer overflow on image lz checks oval:org.secpod.oval:def:89049771 This update for spice-gtk fixes the following issues: Security issues fixed: - CVE-2018-10873: Fix potential heap corruption when demarshalling - CVE-2018-10893: Avoid buffer overflow on image lz checks Other bugs fixed: - Add setuid bit to spice-client-glib-usb-acl-helper |