ELSA-2018-3522

ELSA-2018-3522 - spice-server security update

Type:SECURITY
Impact:IMPORTANT
Release Date:2018-11-08

Description


[0.12.4-16.2]
- Prevent potential buffer/integer overflows with invalid MonitorsConfig messages
sent from an authenticated client
Resolves: CVE-2017-7506

[0.12.4-16.1]
- Fix flexible array buffer overflow
Resolves: rhbz#1596008


Related CVEs


CVE-2017-7506

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 6 (x86_64) spice-server-0.12.4-16.el6_10.2.src.rpma74d43927c4357228f16b1ff46488dbca086c107e29c3f69bf54ef7de8113d1cELSA-2019-0232ol6_u10_x86_64_patch
spice-server-0.12.4-16.el6_10.2.src.rpma74d43927c4357228f16b1ff46488dbca086c107e29c3f69bf54ef7de8113d1cELSA-2019-0232ol6_x86_64_latest
spice-server-0.12.4-16.el6_10.2.x86_64.rpm14bb880bcfa2c34c8e530c180c3c3bbdb51503f47f380a16f77fba96582115d8ELSA-2019-0232ol6_u10_x86_64_patch
spice-server-0.12.4-16.el6_10.2.x86_64.rpm14bb880bcfa2c34c8e530c180c3c3bbdb51503f47f380a16f77fba96582115d8ELSA-2019-0232ol6_x86_64_latest
spice-server-devel-0.12.4-16.el6_10.2.x86_64.rpm982d3c59b723f41c227d4111e8a91716b7fcd899e70dafab001bda632faf3a0dELSA-2019-0232ol6_u10_x86_64_patch
spice-server-devel-0.12.4-16.el6_10.2.x86_64.rpm982d3c59b723f41c227d4111e8a91716b7fcd899e70dafab001bda632faf3a0dELSA-2019-0232ol6_x86_64_latest



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete