Lucene search
RedHatRHSA-2018:3522HistoryNov 07, 2018 - 10:23 p.m.
(RHSA-2018:3522) Important: spice-server security update
2018-11-0722:23:33
access.redhat.com
552
0.003 Low
EPSS
Percentile
68.9%
The Simple Protocol for Independent Computing Environments (SPICE) is a remote display protocol for virtual environments. SPICE users can access a virtualized desktop or server from the local system or any system with network access to the server. SPICE is used in Red Hat Enterprise Linux for viewing virtualized guests running on the Kernel-based Virtual Machine (KVM) hypervisor or on Red Hat Enterprise Virtualization Hypervisors.
Security Fix(es):
- spice: Possible buffer overflow via invalid monitor configurations (CVE-2017-7506)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
This issue was discovered by Frediano Ziglio (Red Hat).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 6 | x86_64 | spice-server-debuginfo | < 0.12.4-16.el6_10.2 | spice-server-debuginfo-0.12.4-16.el6_10.2.x86_64.rpm |
| RedHat | 6 | x86_64 | spice-server | < 0.12.4-16.el6_10.2 | spice-server-0.12.4-16.el6_10.2.x86_64.rpm |
| RedHat | 6 | x86_64 | spice-server-devel | < 0.12.4-16.el6_10.2 | spice-server-devel-0.12.4-16.el6_10.2.x86_64.rpm |
Related
suse
suse
Security update for spice (important)
2017-07-11 21:10:12
Security update for spice (important)
2017-07-11 21:14:14
Security update for spice (important)
2017-07-12 18:10:38
nessus
nessus
Fedora 24 : spice (2017-61689edaf4)
2017-07-21 00:00:00
Oracle Linux 7 : spice (ELSA-2017-2471)
2017-08-16 00:00:00
CentOS 6 : spice-server (CESA-2018:3522)
2018-11-21 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-3355-1)
2017-07-20 00:00:00
RedHat Update for spice RHSA-2017:2471-01
2017-08-15 00:00:00
CentOS Update for spice-server CESA-2018:3522 centos6
2018-11-21 00:00:00
nvd
nvd
CVE-2017-7506
2017-07-18 15:29:00
oraclelinux
oraclelinux
spice-server security update
2018-11-08 00:00:00
spice security update
2017-08-15 00:00:00
spice-server security update
2019-01-31 00:00:00
ubuntucve
ubuntucve
CVE-2017-7506
2017-07-11 00:00:00
osv
osv
spice - security update
2017-07-11 00:00:00
CVE-2017-7506
2017-07-18 15:29:00
cve
cve
CVE-2017-7506
2017-07-18 15:29:00
redhat
redhat
(RHSA-2017:2471) Important: spice security update
2017-08-15 03:03:50
debian
debian
[SECURITY] [DSA 3907-1] spice security update
2017-07-11 21:31:14
cvelist
cvelist
CVE-2017-7506
2017-07-18 15:00:00
fedora
fedora
[SECURITY] Fedora 24 Update: spice-0.12.8-3.fc24
2017-07-20 18:49:10
alpinelinux
alpinelinux
CVE-2017-7506
2017-07-18 15:29:00
centos
centos
spice security update
2018-11-20 14:49:17
spice security update
2017-08-24 09:44:09
ibm
ibm
Security Bulletin: A vulnerability in Spice affects PowerKVM
2018-06-18 01:38:03
ubuntu
ubuntu
Spice vulnerability
2017-07-19 00:00:00
prion
prion
Out-of-bounds
2017-07-18 15:29:00
mageia
mageia
Updated spice packages fix security vulnerability
2017-08-03 22:05:47
archlinux
archlinux
[ASA-201708-12] spice: arbitrary code execution
2017-08-14 00:00:00
debiancve
debiancve
CVE-2017-7506
2017-07-18 15:29:00
redhatcve
redhatcve
CVE-2017-7506
2017-07-11 07:19:24
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:26:17