qspice security update

🗓️ 25 Aug 2010 18:03:47Reported by CentOS ProjectType

centos

centos🔗 lists.centos.org👁 69 Views

QSPICE package update to fix SPICE protocol vulnerabilit

Reporter	Title	Published	Views	Family All 20
Tenable Nessus	CentOS 5 : qspice-client (CESA-2010:0632)	26 Aug 201000:00	–	nessus
Tenable Nessus	CentOS 5 : spice-xpi (CESA-2010:0651)	26 Aug 201000:00	–	nessus
Tenable Nessus	RHEL 5 : qspice-client (RHSA-2010:0632)	24 Jan 201300:00	–	nessus
Tenable Nessus	RHEL 5 : spice-xpi (RHSA-2010:0651)	24 Jan 201300:00	–	nessus
Tenable Nessus	Scientific Linux Security Update : qspice-client on SL5.x i386/x86_64	1 Aug 201200:00	–	nessus
Tenable Nessus	Scientific Linux Security Update : spice-xpi on SL5.x i386/x86_64	1 Aug 201200:00	–	nessus
Cent OS	spice security update	25 Aug 201018:05	–	centos
CVE	CVE-2010-2792	30 Aug 201019:00	–	cve
Cvelist	CVE-2010-2792	30 Aug 201019:00	–	cvelist
EUVD	EUVD-2010-2796	7 Oct 202500:30	–	euvd

OS	OS Version	Architecture	Package	Package Version	Filename
CentOS	5	x86_64	qspice-client	0.3.0-4.el5_5	qspice-client-0.3.0-4.el5_5.x86_64.rpm
CentOS	5	i386	qspice-client	0.3.0-4.el5_5	qspice-client-0.3.0-4.el5_5.i386.rpm

Source	Link
twitter	www.twitter.com/centos
steadfast	www.steadfast.net/
linkedin	www.linkedin.com/groups/22405
youtube	www.youtube.com/TheCentOSProject
facebook	www.facebook.com/groups/centosproject/
reddit	www.reddit.com/r/CentOS/
rhn	www.rhn.redhat.com/errata/RHSA-2010-0632.html
pgp	www.pgp.mit.edu:11371/pks/lookup

25 Aug 2010 18:08Current

5.7Medium risk

Vulners AI Score5.7

CVSS 23.3

EPSS0.00049

qspice-client spice protocol security update race condition man-in-the-middle attack red hat enterprise linux