ELSA-2021-1924

ELSA-2021-1924 - spice security update

Type:SECURITY
Severity:LOW
Release Date:2021-05-25

Description


[0.14.3-4]
- Disable client-side renegotiation to prevent potential DoS
Resolves: rhbz#1904459

[0.14.3-3]
- Fix some static analyzer issues
- Removed Obsoletes line for spice-client
Related: rhbz#1840240

[0.14.3-2]
- Fix multiple buffer overflows in QUIC decoding code
Resolves: rhbz#1829946

[0.14.3-1]
- Update to 0.14.3
Revolves: rhbz#1840240


Related CVEs


CVE-2021-20201

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 8 (aarch64) spice-0.14.3-4.el8.src.rpm0ec61b6ba830132d9843ca765ee56034-
spice-server-0.14.3-4.el8.aarch64.rpma41ec8c585a1d5537e581ce157786348-
spice-server-devel-0.14.3-4.el8.aarch64.rpmd3783b6a5150709b98c82b444148c4d2-
Oracle Linux 8 (x86_64) spice-0.14.3-4.el8.src.rpm0ec61b6ba830132d9843ca765ee56034-
spice-server-0.14.3-4.el8.i686.rpm08a643e70ab75a88e9c5a86571a2bba5-
spice-server-0.14.3-4.el8.x86_64.rpma798372bd473ae13727a9f8f0746d18e-
spice-server-devel-0.14.3-4.el8.i686.rpm94f34fbc667d0de32bcc33ec09541d38-
spice-server-devel-0.14.3-4.el8.x86_64.rpm1ad64ab0c559baace2f024f92b571aa0-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete