ELSA-2021-1924

ULN >
Oracle Linux Errata repository >
ELSA-2021-1924

ELSA-2021-1924 - spice security update

Type:	SECURITY
Severity:	LOW
Release Date:	2021-05-25

Description

[0.14.3-4]
- Disable client-side renegotiation to prevent potential DoS
Resolves: rhbz#1904459

[0.14.3-3]
- Fix some static analyzer issues
- Removed Obsoletes line for spice-client
Related: rhbz#1840240

[0.14.3-2]
- Fix multiple buffer overflows in QUIC decoding code
Resolves: rhbz#1829946

[0.14.3-1]
- Update to 0.14.3
Revolves: rhbz#1840240

Related CVEs

CVE-2021-20201

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 8 (aarch64)	spice-0.14.3-4.el8.src.rpm	0ec61b6ba830132d9843ca765ee56034	-
	spice-server-0.14.3-4.el8.aarch64.rpm	a41ec8c585a1d5537e581ce157786348	-
	spice-server-devel-0.14.3-4.el8.aarch64.rpm	d3783b6a5150709b98c82b444148c4d2	-

Oracle Linux 8 (x86_64)	spice-0.14.3-4.el8.src.rpm	0ec61b6ba830132d9843ca765ee56034	-
	spice-server-0.14.3-4.el8.i686.rpm	08a643e70ab75a88e9c5a86571a2bba5	-
	spice-server-0.14.3-4.el8.x86_64.rpm	a798372bd473ae13727a9f8f0746d18e	-
	spice-server-devel-0.14.3-4.el8.i686.rpm	94f34fbc667d0de32bcc33ec09541d38	-
	spice-server-devel-0.14.3-4.el8.x86_64.rpm	1ad64ab0c559baace2f024f92b571aa0	-

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691