Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: spice (UTSA-2026-016591)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016591 advisory. A flaw was found in spice in versions before 0.14.92. A DoS tool might make it easier for remote attackers to cause a denial of service CPU consumption by performing...

Astra Linux - уязвимость в spice

A flaw was discovered in the spice library in versions prior to 0.14.92. A DoS tool could make it easier for remote attackers to cause a denial of service CPU consumption by performing multiple renegotiations within a single connection...

MiracleLinux 7 : spice-0.14.0-2.el7.5, spice-gtk-0.34-3.el7.2 (AXSA:2018-3324:02)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2018-3324:02 advisory. Security Fix - SPICE CVE-2018-10873 CVEJVNhttp://jvndb.jvn.jp/ Tenable has extracted the preceding description block directly from the MiracleLinux security...

MiracleLinux 7 : spice-0.12.8-2.el7.1 (AXSA:2017-1907:03)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2017-1907:03 advisory. The Simple Protocol for Independent Computing Environments SPICE is a remote display system built for virtual environments which allows you to view a computi...

MiracleLinux 7 : spice-0.14.0-6.el7.1 (AXSA:2019-3720:03)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2019-3720:03 advisory. spice: Off-by-one error in array access in spice/server/memslot.c CVE-2019-3813 Tenable has extracted the preceding description block directly from the...

MiracleLinux 4 : spice-gtk-0.26-8.AXS4.1, spice-server-0.12.4-16.AXS4.1 (AXSA:2018-3326:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2018-3326:01 advisory. spice: Missing check in demarshal.py:writevalidatearrayitem allows for buffer overflow and denial of service CVE-2018-10873 Tenable has extracted the precedi...

EUVD-2015-5247

Malware in sbrugna...

EUVD-2013-4180

Malware in sbrugna...

EUVD-2018-2939

Malware in sbrugna...

EUVD-2016-10384

Malware in sbrugna...

EUVD-2016-10383

Malware in sbrugna...

EUVD-2015-5248

Malware in sbrugna...

EUVD-2013-4058

Malware in sbrugna...

EUVD-2019-13436

Malware in sbrugna...

EUVD-2015-3302

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2018-10873

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was discovered in SPICE before version 0.14.1 where the generated code used for demarshalling messages lacked sufficient bounds checks. A...

Alibaba Cloud Linux 3 : 0090: spice (ALINUX3-SA-2022:0090)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2022:0090 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2019-3813: Spice, versions 0.5.2 through 0.14.1...

SUSE CVE-2015-3247

Race condition in the workerupdatemonitorsconfig function in SPICE 0.12.4 allows a remote authenticated guest user to cause a denial of service heap-based memory corruption and QEMU-KVM crash or possibly execute arbitrary code on the host via unspecified vectors...

SUSE CVE-2016-2150

SPICE allows local guest OS users to read from or write to arbitrary host memory locations via crafted primary surface parameters, a similar issue to CVE-2015-5261...

SUSE CVE-2021-20201

A flaw was found in spice in versions before 0.14.92. A DoS tool might make it easier for remote attackers to cause a denial of service CPU consumption by performing many renegotiations within a single connection...