ELSA-2016-1205

ELSA-2016-1205 - spice security update

Type:SECURITY
Severity:IMPORTANT
Release Date:2016-06-06

Description


[0.12.4-15.1]
- Fix heap-based memory corruption within smartcard handling
Resolves: CVE-2016-0749
- Fix host memory access from guest with invalid primary surface parameters
Resolves: CVE-2016-2150


Related CVEs


CVE-2016-0749
CVE-2016-2150

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (x86_64) spice-0.12.4-15.el7_2.1.src.rpmfacc2b2da300b80e984afb336556d5d7ELSA-2017-2471
spice-server-0.12.4-15.el7_2.1.x86_64.rpm89ce0fffb71284fcd5cdfd0cc0759904ELSA-2017-2471
spice-server-devel-0.12.4-15.el7_2.1.x86_64.rpmf77f0be4e5d4efea61b1185b415e1873ELSA-2017-2471



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete