Lucene search
OracleLinuxELSA-2020-4187HistoryOct 08, 2020 - 12:00 a.m.
spice and spice-gtk security update
2020-10-0800:00:00
linux.oracle.com
6
6.6 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
spice
[0.14.0-9.0.2.el7_9.1]
- Add ARM support
[0.14.0-9.1] - Fix multiple buffer overflows in QUIC decoding code
Resolves: CVE-2020-14355
spice-gtk
[0.35-5.1] - Fix multiple buffer overflows in QUIC decoding code
Resolves: CVE-2020-14355
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 7 | src | spice | <Â 0.14.0-9.0.2.el7_9.1 | spice-0.14.0-9.0.2.el7_9.1.src.rpm |
| oracle linux | 7 | src | spice-gtk | <Â 0.35-5.el7_9.1 | spice-gtk-0.35-5.el7_9.1.src.rpm |
| oracle linux | 7 | aarch64 | spice-glib | <Â 0.35-5.el7_9.1 | spice-glib-0.35-5.el7_9.1.aarch64.rpm |
| oracle linux | 7 | aarch64 | spice-glib-devel | <Â 0.35-5.el7_9.1 | spice-glib-devel-0.35-5.el7_9.1.aarch64.rpm |
| oracle linux | 7 | aarch64 | spice-gtk-tools | <Â 0.35-5.el7_9.1 | spice-gtk-tools-0.35-5.el7_9.1.aarch64.rpm |
| oracle linux | 7 | aarch64 | spice-gtk3 | <Â 0.35-5.el7_9.1 | spice-gtk3-0.35-5.el7_9.1.aarch64.rpm |
| oracle linux | 7 | aarch64 | spice-gtk3-devel | <Â 0.35-5.el7_9.1 | spice-gtk3-devel-0.35-5.el7_9.1.aarch64.rpm |
| oracle linux | 7 | aarch64 | spice-gtk3-vala | <Â 0.35-5.el7_9.1 | spice-gtk3-vala-0.35-5.el7_9.1.aarch64.rpm |
| oracle linux | 7 | aarch64 | spice-server | <Â 0.14.0-9.0.2.el7_9.1 | spice-server-0.14.0-9.0.2.el7_9.1.aarch64.rpm |
| oracle linux | 7 | aarch64 | spice-server-devel | <Â 0.14.0-9.0.2.el7_9.1 | spice-server-devel-0.14.0-9.0.2.el7_9.1.aarch64.rpm |
Related
nessus
nessus
EulerOS Virtualization 3.0.6.6 : spice (EulerOS-SA-2021-1518)
2021-03-04 00:00:00
Debian DSA-4771-1 : spice - security update
2020-10-12 00:00:00
RHEL 8 : spice and spice-gtk (RHSA-2020:4184)
2020-10-06 00:00:00
debian
debian
[SECURITY] [DSA 4771-1] spice security update
2020-10-11 13:39:47
[SECURITY] [DLA 2428-1] spice-gtk security update
2020-11-01 17:09:07
[SECURITY] [DLA 2427-1] spice security update
2020-11-01 17:06:46
ubuntucve
ubuntucve
CVE-2020-14355
2020-10-06 00:00:00
ubuntu
ubuntu
Spice vulnerability
2020-10-07 00:00:00
Spice vulnerability
2020-10-06 00:00:00
debiancve
debiancve
CVE-2020-14355
2020-10-07 15:15:00
openvas
openvas
Huawei EulerOS: Security Advisory for spice (EulerOS-SA-2021-1451)
2021-03-05 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:3071-1)
2021-06-09 00:00:00
Ubuntu: Security Advisory (USN-4572-2)
2022-08-26 00:00:00
suse
suse
Security update for spice (moderate)
2020-11-01 00:00:00
Security update for spice-gtk (moderate)
2020-11-01 00:00:00
redhat
redhat
(RHSA-2020:4186) Important: spice and spice-gtk security update
2020-10-06 12:57:00
(RHSA-2020:4185) Important: spice and spice-gtk security update
2020-10-06 12:56:31
(RHSA-2020:4187) Important: spice and spice-gtk security update
2020-10-06 12:57:07
alpinelinux
alpinelinux
CVE-2020-14355
2020-10-07 15:15:00
veracode
veracode
Arbitrary Code Execution
2020-10-08 02:57:58
oraclelinux
oraclelinux
spice and spice-gtk security update
2020-10-07 00:00:00
osv
osv
spice - security update
2020-11-01 00:00:00
spice vulnerability
2020-10-07 13:50:43
CVE-2020-14355
2020-10-07 15:15:12
altlinux
altlinux
Security fix for the ALT Linux 9 package SPICE version 0.15.0-alt1
2021-05-31 00:00:00
redhatcve
redhatcve
CVE-2020-14355
2020-10-06 12:51:37
centos
centos
spice security update
2020-11-06 22:13:08
amazon
amazon
Important: spice-gtk
2020-10-22 18:40:00
Important: spice
2020-10-22 18:40:00
cve
cve
CVE-2020-14355
2020-10-07 15:15:00
prion
prion
Buffer overflow
2020-10-07 15:15:00
mageia
mageia
Updated spice and spice-gtk packages fix a security vulnerability
2020-11-10 18:20:00
archlinux
archlinux
[ASA-202107-12] spice: multiple issues
2021-07-06 00:00:00
6.6 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
Related for ELSA-2020-4187