Jump to content
Compatible Support Forums
Sign in to follow this  
news

[SECURITY] [DLA 531-1] spice security update

Recommended Posts

Package : spice

Version : 0.11.0-1+deb7u3

CVE ID : CVE-2016-2150

Debian Bug : 826584

 

A vulnerability has been found in the Simple Protocol for Independent Computing

Environments, SPICE.

 

Frediano Ziglio from Red Hat discovered that SPICE allowed local guest

OS users to read from or write to arbitrary host memory locations via

crafted primary surface parameters.

 

For Debian 7 "Wheezy", this problem has been fixed in version 0.11.0-1+deb7u3.

 

We recommend you to upgrade your spice packages.

 

Further information about Debian LTS security advisories, how to apply

these updates to your system and frequently asked questions can be

found at: https://wiki.debian.org/LTS

 

 

Share this post


Link to post

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
Sign in to follow this  

×