ELSA-2018-3522

ULN >
Oracle Linux Errata repository >
ELSA-2018-3522

ELSA-2018-3522 - spice-server security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2018-11-08

Description

[0.12.4-16.2]
- Prevent potential buffer/integer overflows with invalid MonitorsConfig messages
sent from an authenticated client
Resolves: CVE-2017-7506

[0.12.4-16.1]
- Fix flexible array buffer overflow
Resolves: rhbz#1596008

Related CVEs

CVE-2017-7506

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 6 (x86_64)	spice-server-0.12.4-16.el6_10.2.src.rpm	a74d43927c4357228f16b1ff46488dbca086c107e29c3f69bf54ef7de8113d1c	ELSA-2019-0232	ol6_u10_x86_64_patch
	spice-server-0.12.4-16.el6_10.2.src.rpm	a74d43927c4357228f16b1ff46488dbca086c107e29c3f69bf54ef7de8113d1c	ELSA-2019-0232	ol6_x86_64_latest
	spice-server-0.12.4-16.el6_10.2.x86_64.rpm	14bb880bcfa2c34c8e530c180c3c3bbdb51503f47f380a16f77fba96582115d8	ELSA-2019-0232	ol6_u10_x86_64_patch
	spice-server-0.12.4-16.el6_10.2.x86_64.rpm	14bb880bcfa2c34c8e530c180c3c3bbdb51503f47f380a16f77fba96582115d8	ELSA-2019-0232	ol6_x86_64_latest
	spice-server-devel-0.12.4-16.el6_10.2.x86_64.rpm	982d3c59b723f41c227d4111e8a91716b7fcd899e70dafab001bda632faf3a0d	ELSA-2019-0232	ol6_u10_x86_64_patch
	spice-server-devel-0.12.4-16.el6_10.2.x86_64.rpm	982d3c59b723f41c227d4111e8a91716b7fcd899e70dafab001bda632faf3a0d	ELSA-2019-0232	ol6_x86_64_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691