Stay Connected:

ELSA-2017-0253

ELSA-2017-0253 - spice-server security update

Type:SECURITY
Severity:MODERATE
Release Date:2017-02-06

Description


[0.12.4-13.2]
- Fix buffer overflow in main_channel_alloc_msg_rcv_buf when reading large
messages.
Resolves: CVE-2016-9577
- Fix remote DoS via crafted message.
Resolves: CVE-2016-9578


Related CVEs


CVE-2016-9577
CVE-2016-9578

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 6 (x86_64) spice-server-0.12.4-13.el6_8.2.src.rpma456f36524d3b21d91d2f10dfe94277eELSA-2019-0232
spice-server-0.12.4-13.el6_8.2.x86_64.rpm1a783e880e25fc797be49fcf54219588ELSA-2019-0232
spice-server-devel-0.12.4-13.el6_8.2.x86_64.rpmed0981848356dfb971957be42f96ce94ELSA-2019-0232



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights