Описание
ELSA-2018-3522: spice-server security update (IMPORTANT)
[0.12.4-16.2]
- Prevent potential buffer/integer overflows with invalid MonitorsConfig messages sent from an authenticated client Resolves: CVE-2017-7506
[0.12.4-16.1]
- Fix flexible array buffer overflow Resolves: rhbz#1596008
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
spice-server
0.12.4-16.el6_10.2
spice-server-devel
0.12.4-16.el6_10.2
Связанные CVE
Связанные уязвимости
spice versions though 0.13 are vulnerable to out-of-bounds memory access when processing specially crafted messages from authenticated attacker to the spice server resulting into crash and/or server memory leak.
spice versions though 0.13 are vulnerable to out-of-bounds memory access when processing specially crafted messages from authenticated attacker to the spice server resulting into crash and/or server memory leak.
spice versions though 0.13 are vulnerable to out-of-bounds memory access when processing specially crafted messages from authenticated attacker to the spice server resulting into crash and/or server memory leak.
spice versions though 0.13 are vulnerable to out-of-bounds memory acce ...
