Frediano Ziglio discovered multiple buffer overflow vulnerabilities in the QUIC image decoding process of libspice-server-dev, a libspice-server-dev protocol client and server library, which could result in denial of service, or possibly, execution of arbitrary code.