Download
| Alert*
oval:org.secpod.oval:def:89003433
This update for spice fixes the following issues: Security issue fixed: - CVE-2019-3813: Fixed a out-of-bounds read in the memslot_get_virt function that could lead to denial-of-service or code-execution . oval:org.secpod.oval:def:89003252 This update for spice fixes the following issues: Security issue fixed: - CVE-2019-3813: Fixed a out-of-bounds read in the memslot_get_virt function that could lead to denial-of-service or code-execution . oval:org.secpod.oval:def:89003351 This update for spice fixes the following issues: Security issue fixed: - CVE-2019-3813: Fixed an out-of-bounds read in the memslot_get_virt function that could lead to denial-of-service or code-execution . oval:org.secpod.oval:def:89003253 libspice-server1 is installed oval:org.secpod.oval:def:89044948 This security update for spice fixes the following issues: CVE-2016-9577: A buffer overflow in the spice server could have potentially been used by unauthenticated attackers to execute arbitrary code. CVE-2016-9578: Unauthenticated attackers could have caused a denial of service via a crafted messa ... oval:org.secpod.oval:def:89044684 This security update for spice fixes the following issues: CVE-2016-9577: A buffer overflow in the spice server could have potentially been used by unauthenticated attackers to execute arbitrary code. CVE-2016-9578: Unauthenticated attackers could have caused a denial of service via a crafted messa ... oval:org.secpod.oval:def:89044751 This update for spice fixes the following issues: - CVE-2017-7506: A possible buffer overflow via invalid monitor configurations oval:org.secpod.oval:def:89044951 This update for spice fixes the following issues: - CVE-2017-7506: A possible buffer overflow via invalid monitor configurations oval:org.secpod.oval:def:89045270 Spice was updated to fix three security issues. The following vulnerabilities were fixed: * CVE-2015-3247: heap corruption in the spice server * CVE-2015-5261: Guest could have accessed host memory using crafted images * CVE-2015-5260: Insufficient validation of surface_id parameter could have cau ... oval:org.secpod.oval:def:89050382 This update for spice fixes the following issues: - CVE-2020-14355: Fixed multiple buffer overflow vulnerabilities in QUIC image decoding . oval:org.secpod.oval:def:89047420 This update for spice fixes the following issues: - CVE-2021-20201: Fixed an issue which could allow clients to cause a denial of service by repeatedly renegotiating a connection . oval:org.secpod.oval:def:89049673 This update for spice fixes the following issues: Security issues fixed: - CVE-2018-10873: Fix potential heap corruption when demarshalling - CVE-2018-10893: Avoid buffer overflow on image lz checks |