Описание
ELSA-2010-0633: qspice security update (IMPORTANT)
[0.3.0-54.el5_5.2]
- Fix unsafe accesses
- spice: drop libpng from windows components (537849)
- libspice: fix unsafe guest data accessing Resolves: #568719
- fix unsafe free() call. Resolves: #568723
- spice server: fix unsafe cursor items handling. Resolves: #568719
Обновленные пакеты
Oracle Linux 5
Oracle Linux x86_64
qspice
0.3.0-54.el5_5.2
qspice-libs
0.3.0-54.el5_5.2
qspice-libs-devel
0.3.0-54.el5_5.2
Связанные CVE
Связанные уязвимости
libspice, as used in QEMU-KVM in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2 and qspice 0.3.0, does not properly restrict the addresses upon which memory-management actions are performed, which allows guest OS users to cause a denial of service (guest OS crash) or possibly gain privileges via unspecified vectors.
libspice, as used in QEMU-KVM in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2 and qspice 0.3.0, does not properly restrict the addresses upon which memory-management actions are performed, which allows guest OS users to cause a denial of service (guest OS crash) or possibly gain privileges via unspecified vectors.
libspice, as used in QEMU-KVM in the Hypervisor (aka rhev-hypervisor) ...
libspice, as used in QEMU-KVM in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2 and qspice 0.3.0, does not properly validate guest QXL driver pointers, which allows guest OS users to cause a denial of service (invalid pointer dereference and guest OS crash) or possibly gain privileges via unspecified vectors.
libspice, as used in QEMU-KVM in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2 and qspice 0.3.0, does not properly validate guest QXL driver pointers, which allows guest OS users to cause a denial of service (invalid pointer dereference and guest OS crash) or possibly gain privileges via unspecified vectors.