ELSA-2017-0253

ULN >
Oracle Linux Errata repository >
ELSA-2017-0253

ELSA-2017-0253 - spice-server security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2017-02-06

Description

[0.12.4-13.2]
- Fix buffer overflow in main_channel_alloc_msg_rcv_buf when reading large
messages.
Resolves: CVE-2016-9577
- Fix remote DoS via crafted message.
Resolves: CVE-2016-9578

Related CVEs

CVE-2016-9577

CVE-2016-9578

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 6 (x86_64)	spice-server-0.12.4-13.el6_8.2.src.rpm	ca40ea66d5ef5ae937f1ac44e3ce95c11748e111efb7cfe2900aaeb5707c22ee	ELSA-2019-0232	ol6_u8_x86_64_patch
	spice-server-0.12.4-13.el6_8.2.src.rpm	ca40ea66d5ef5ae937f1ac44e3ce95c11748e111efb7cfe2900aaeb5707c22ee	ELSA-2019-0232	ol6_x86_64_latest_archive
	spice-server-0.12.4-13.el6_8.2.x86_64.rpm	0444b2f8fcd67c326b257972f4954939a414b63576d33452e5099a03e42946f8	ELSA-2019-0232	ol6_u8_x86_64_patch
	spice-server-0.12.4-13.el6_8.2.x86_64.rpm	0444b2f8fcd67c326b257972f4954939a414b63576d33452e5099a03e42946f8	ELSA-2019-0232	ol6_x86_64_latest_archive
	spice-server-devel-0.12.4-13.el6_8.2.x86_64.rpm	0bd2bf5f1a4a878e4711e7c2a34c9fbf0b5a840387c82e8a5345f782eb463f16	ELSA-2019-0232	ol6_u8_x86_64_patch
	spice-server-devel-0.12.4-13.el6_8.2.x86_64.rpm	0bd2bf5f1a4a878e4711e7c2a34c9fbf0b5a840387c82e8a5345f782eb463f16	ELSA-2019-0232	ol6_x86_64_latest_archive

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691