Описание
The (1) red_channel_pipes_add_type and (2) red_channel_pipes_add_empty_msg functions in server/red_channel.c in SPICE before 0.12.4 do not properly perform ring loops, which might allow remote attackers to cause a denial of service (reachable assertion and server exit) by triggering a network error.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 0.12.4-0nocelt1 |
| esm-infra-legacy/trusty | not-affected | 0.12.4-0nocelt1 |
| esm-infra/xenial | not-affected | 0.12.4-0nocelt1 |
| lucid | DNE | |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needed |
| quantal | ignored | end of life |
| raring | released | 0.12.2-0nocelt2expubuntu1.1 |
| saucy | released | 0.12.4-0nocelt1 |
| trusty | released | 0.12.4-0nocelt1 |
Показывать по
EPSS
5 Medium
CVSS2
Связанные уязвимости
The (1) red_channel_pipes_add_type and (2) red_channel_pipes_add_empty_msg functions in server/red_channel.c in SPICE before 0.12.4 do not properly perform ring loops, which might allow remote attackers to cause a denial of service (reachable assertion and server exit) by triggering a network error.
The (1) red_channel_pipes_add_type and (2) red_channel_pipes_add_empty_msg functions in server/red_channel.c in SPICE before 0.12.4 do not properly perform ring loops, which might allow remote attackers to cause a denial of service (reachable assertion and server exit) by triggering a network error.
The (1) red_channel_pipes_add_type and (2) red_channel_pipes_add_empty ...
The (1) red_channel_pipes_add_type and (2) red_channel_pipes_add_empty_msg functions in server/red_channel.c in SPICE before 0.12.4 do not properly perform ring loops, which might allow remote attackers to cause a denial of service (reachable assertion and server exit) by triggering a network error.
EPSS
5 Medium
CVSS2