Lucene search
RedhatCVELIST:CVE-2019-3813HistoryJan 11, 2019 - 12:00 a.m.
CVE-2019-3813
2019-01-1100:00:00
redhat
www.cve.org
Spice, versions 0.5.2 through 0.14.1, are vulnerable to an out-of-bounds read due to an off-by-one error in memslot_get_virt. This may lead to a denial of service, or, in the worst case, code-execution by unauthenticated attackers.
CNA Affected
[
{
"product": "Spice",
"vendor": "Red Hat, Inc.",
"versions": [
{
"status": "affected",
"version": "versions 0.5.2 through 0.14.1"
}
]
}
]References
www.securityfocus.com/bid/106801
access.redhat.com/errata/RHSA-2019:0231
access.redhat.com/errata/RHSA-2019:0232
access.redhat.com/errata/RHSA-2019:0457
bugzilla.redhat.com/show_bug.cgi?id=1665371
lists.debian.org/debian-lts-announce/2019/01/msg00026.html
security.gentoo.org/glsa/202007-30
usn.ubuntu.com/3870-1/
www.debian.org/security/2019/dsa-4375
Related
nessus
nessus
CentOS 6 : spice-server (CESA-2019:0232)
2019-02-11 00:00:00
NewStart CGSL MAIN 4.05 : spice-server Vulnerability (NS-SA-2019-0149)
2019-08-12 00:00:00
NewStart CGSL MAIN 4.06 : spice-server Vulnerability (NS-SA-2019-0092)
2019-08-12 00:00:00
openvas
openvas
CentOS Update for spice-server CESA-2019:0232 centos6
2019-02-09 00:00:00
CentOS Update for spice-server CESA-2019:0231 centos7
2019-02-10 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:0241-1)
2021-04-19 00:00:00
archlinux
archlinux
[ASA-201902-4] spice: arbitrary code execution
2019-02-11 00:00:00
ubuntucve
ubuntucve
CVE-2019-3813
2019-01-28 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-02-07 02:24:13
cve
cve
CVE-2019-3813
2019-02-04 18:29:00
fedora
fedora
[SECURITY] Fedora 29 Update: spice-0.14.1-2.fc29
2019-02-09 02:18:20
[SECURITY] Fedora 28 Update: spice-0.14.0-5.fc28
2019-02-23 01:36:32
redhat
redhat
(RHSA-2019:0231) Important: spice security update
2019-01-31 17:03:18
(RHSA-2019:0232) Important: spice-server security update
2019-01-31 17:03:33
(RHSA-2019:0457) Important: redhat-virtualization-host security update
2019-03-05 11:01:11
redhatcve
redhatcve
CVE-2019-3813
2019-10-10 16:02:06
osv
osv
spice - security update
2019-01-29 00:00:00
CVE-2019-3813
2019-02-04 18:29:00
spice - security update
2019-01-30 00:00:00
prion
prion
Out-of-bounds
2019-02-04 18:29:00
suse
suse
Security update for spice (important)
2019-02-14 00:00:00
Security update for spice (important)
2019-02-13 00:00:00
alpinelinux
alpinelinux
CVE-2019-3813
2019-02-04 18:29:00
gentoo
gentoo
spice: Arbitrary code execution
2020-07-27 00:00:00
amazon
amazon
Important: spice
2019-03-21 19:33:00
debian
debian
[SECURITY] [DLA 1649-1] spice security update
2019-01-30 16:28:19
[SECURITY] [DSA 4375-1] spice security update
2019-01-29 16:34:12
[SECURITY] [DSA 4375-1] spice security update
2019-01-29 16:34:12
centos
centos
spice security update
2019-02-08 14:39:05
spice security update
2019-02-09 14:47:11
ibm
ibm
Security Bulletin: A vulnerability in Spice affects PowerKVM
2019-03-04 05:50:01
nvd
nvd
CVE-2019-3813
2019-02-04 18:29:00
ubuntu
ubuntu
Spice vulnerability
2019-01-28 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package SPICE version 0.14.2-alt1
2019-06-04 00:00:00
oraclelinux
oraclelinux
spice security update
2019-02-01 00:00:00
spice-server security update
2019-01-31 00:00:00
debiancve
debiancve
CVE-2019-3813
2019-02-04 18:29:00
mageia
mageia
Updated spice packages fix security vulnerability
2019-02-22 03:35:50