Уязвимость функции memslot_get_virt системы рендеринга удаленного виртуального рабочего стола SPICE, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код

Spice, versions 0.5.2 through 0.14.1, are vulnerable to an out-of-bounds read due to an off-by-one error in memslot_get_virt. This may lead to a denial of service, or, in the worst case, code-execution by unauthenticated attackers.

Spice, versions 0.5.2 through 0.14.1, are vulnerable to an out-of-bounds read due to an off-by-one error in memslot_get_virt. This may lead to a denial of service, or, in the worst case, code-execution by unauthenticated attackers.

Spice, versions 0.5.2 through 0.14.1, are vulnerable to an out-of-bounds read due to an off-by-one error in memslot_get_virt. This may lead to a denial of service, or, in the worst case, code-execution by unauthenticated attackers.

Spice, versions 0.5.2 through 0.14.1, are vulnerable to an out-of-boun ...

Security update for spice

Security update for spice

Security update for spice

Security update for spice

Security update for spice

Security update for spice

Security update for spice

Security update for spice

Security update for spice

Spice, versions 0.5.2 through 0.14.1, are vulnerable to an out-of-bounds read due to an off-by-one error in memslot_get_virt. This may lead to a denial of service, or, in the worst case, code-execution by unauthenticated attackers.

ELSA-2019-0232: spice-server security update (IMPORTANT)

ELSA-2019-0231: spice security update (IMPORTANT)

Уязвимость функции memslot_get_virt библиотеки Spice, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании