Vulnerability CVE-2020-25650: Information
Description
A flaw was found in the way the spice-vdagentd daemon handled file transfers from the host system to the virtual machine. Any unprivileged local guest user with access to the UNIX domain socket path `/run/spice-vdagentd/spice-vdagent-sock` could use this flaw to perform a memory denial of service for spice-vdagentd or even other processes in the VM system. The highest threat from this vulnerability is to system availability. This flaw affects spice-vdagent versions 0.20 and previous versions.
Severity: MEDIUM (5.5) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
|---|---|---|---|---|---|---|
| spice-vdagent | sisyphus | 0.21.0-alt1 | 0.22.1-alt1.1 | ALT-PU-2021-1106-1 | 265014 | Fixed |
| spice-vdagent | p10 | 0.21.0-alt1 | 0.22.1-alt1.1 | ALT-PU-2021-1106-1 | 265014 | Fixed |
| spice-vdagent | p9 | 0.21.0-alt1 | 0.21.0-alt1 | ALT-PU-2021-1155-1 | 265015 | Fixed |
| spice-vdagent | c10f1 | 0.21.0-alt1 | 0.21.0-alt3 | ALT-PU-2021-1106-1 | 265014 | Fixed |
| spice-vdagent | c9f2 | 0.21.0-alt3 | 0.21.0-alt3 | ALT-PU-2023-1838-1 | 321199 | Fixed |
| spice-vdagent | p11 | 0.21.0-alt1 | 0.22.1-alt1.1 | ALT-PU-2021-1106-1 | 265014 | Fixed |
References to Advisories, Solutions, and Tools
Hyperlink | Resource |
|---|---|
| https://www.openwall.com/lists/oss-security/2020/11/04/1 |
|
| https://bugzilla.redhat.com/show_bug.cgi?id=1886345 |
|
| [debian-lts-announce] 20210113 [SECURITY] [DLA 2524-1] spice-vdagent security update |
|
| FEDORA-2021-09ce0cdfac | |
| FEDORA-2021-510977db25 |