ELSA-2016-1204

ULN >
Oracle Linux Errata repository >
ELSA-2016-1204

ELSA-2016-1204 - spice-server security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2016-06-06

Description

[0.12.4-13.1]
- Fix heap-based memory corruption within smartcard handling
Resolves: CVE-2016-0749
- Fix host memory access from guest with invalid primary surface parameters
Resolves: CVE-2016-2150

Related CVEs

CVE-2016-0749

CVE-2016-2150

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 6 (x86_64)	spice-server-0.12.4-13.el6.1.src.rpm	dc98ca8d5eeb958b542d403dc5f7ab91	ELSA-2019-0232
	spice-server-0.12.4-13.el6.1.x86_64.rpm	3ec6b9ea04a1dc4a454247d34bb463dc	ELSA-2019-0232
	spice-server-devel-0.12.4-13.el6.1.x86_64.rpm	14cfc889c2fc1b1dfb15941d83194151	ELSA-2019-0232

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691