Lucene search

K
redhatRedHatRHSA-2017:2471
HistoryAug 15, 2017 - 3:03 a.m.

(RHSA-2017:2471) Important: spice security update

2017-08-1503:03:50
access.redhat.com
82

0.003 Low

EPSS

Percentile

68.9%

The Simple Protocol for Independent Computing Environments (SPICE) is a remote display system built for virtual environments which allows the user to view a computing ‘desktop’ environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures.

Security Fix(es):

  • A vulnerability was discovered in spice server’s protocol handling. An authenticated attacker could send specially crafted messages to the spice server, causing out-of-bounds memory accesses, leading to parts of server memory being leaked or a crash. (CVE-2017-7506)

This issue was discovered by Frediano Ziglio (Red Hat).