Vulnerability CVE-2019-3813: Information
Description
Spice, versions 0.5.2 through 0.14.1, are vulnerable to an out-of-bounds read due to an off-by-one error in memslot_get_virt. This may lead to a denial of service, or, in the worst case, code-execution by unauthenticated attackers.
Severity: HIGH (7.5) Vector: CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
---|---|---|---|---|---|---|
SPICE | sisyphus | 0.14.2-alt1 | 0.15.2-alt3 | ALT-PU-2019-1972-1 | 231199 | Fixed |
SPICE | p10 | 0.14.2-alt1 | 0.15.0-alt1 | ALT-PU-2019-1972-1 | 231199 | Fixed |
SPICE | p9 | 0.14.2-alt1 | 0.15.0-alt1 | ALT-PU-2019-1989-1 | 231442 | Fixed |
SPICE | c10f1 | 0.14.2-alt1 | 0.15.0-alt1 | ALT-PU-2019-1972-1 | 231199 | Fixed |
SPICE | c9f2 | 0.14.2-alt1 | 0.15.0-alt1 | ALT-PU-2019-1989-1 | 231442 | Fixed |
SPICE | p11 | 0.14.2-alt1 | 0.15.2-alt3 | ALT-PU-2019-1972-1 | 231199 | Fixed |
References to Advisories, Solutions, and Tools
Hyperlink | Resource |
---|---|
https://bugzilla.redhat.com/show_bug.cgi?id=1665371 |
|
DSA-4375 |
|
USN-3870-1 |
|
[debian-lts-announce] 20190130 [SECURITY] [DLA 1649-1] spice security update |
|
RHSA-2019:0232 |
|
RHSA-2019:0231 |
|
106801 |
|
RHSA-2019:0457 |
|
GLSA-202007-30 |
|