ELSA-2013-1473

ULN >
Oracle Linux Errata repository >
ELSA-2013-1473

ELSA-2013-1473 - spice-server security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2013-10-29

Description

[0.12.0-12.5]
- Fix issue with error-handling of RSA_private_decrypt() in previous patch
Related: CVE-2013-4282

[0.12.0-12.el6_4.4]
- Fix buffer overflow when decrypting client SPICE ticket
Resolves: CVE-2013-4282

Related CVEs

CVE-2013-4282

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 6 (x86_64)	spice-server-0.12.0-12.el6_4.5.src.rpm	980b521be7aedac9358f8a138cfdedf45643791786662f79d5bcc54ffd2a8d40	ELSA-2019-0232	ol6_u4_x86_64_patch
	spice-server-0.12.0-12.el6_4.5.src.rpm	980b521be7aedac9358f8a138cfdedf45643791786662f79d5bcc54ffd2a8d40	ELSA-2019-0232	ol6_x86_64_latest_archive
	spice-server-0.12.0-12.el6_4.5.x86_64.rpm	adc49b61e11ad71163947511b340d0456e6be306253604020f40507835b7e31f	ELSA-2019-0232	ol6_u4_x86_64_patch
	spice-server-0.12.0-12.el6_4.5.x86_64.rpm	adc49b61e11ad71163947511b340d0456e6be306253604020f40507835b7e31f	ELSA-2019-0232	ol6_x86_64_latest_archive
	spice-server-devel-0.12.0-12.el6_4.5.x86_64.rpm	bcbb4c68cbb32c75063647c56a7b6aead99c9997ce44b0c74487f6e7cdc4917c	ELSA-2019-0232	ol6_u4_x86_64_patch
	spice-server-devel-0.12.0-12.el6_4.5.x86_64.rpm	bcbb4c68cbb32c75063647c56a7b6aead99c9997ce44b0c74487f6e7cdc4917c	ELSA-2019-0232	ol6_x86_64_latest_archive

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691