The vulnerability of the memslot_get_virt function in the rendering system for deleted virtual workstations in SPICE allows a attacker to trigger a service failure or execute arbitrary code.
The vulnerability of the memslotgetvirt function in the SPICE rendering system’s “deleted virtual working area” component is related to the possibility of reading values beyond the allowed range due to an off-by-one error. Exploiting this vulnerability can allow a remote attacker to cause service...