EulerOS 2.0 SP3 : spice (EulerOS-SA-2021-1121)

According to the version of the spice package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Multiple buffer overflow vulnerabilities were found in the QUIC image decoding process of the SPICE remote display system, before spice-0.14.2-1. Bot...

EulerOS 2.0 SP3 : spice-gtk (EulerOS-SA-2021-1122)

According to the versions of the spice-gtk packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the way spice-client processed certain messages sent from the server. An attacker, having control of malicious...

Huawei EulerOS: Security Advisory for ImageMagick (EulerOS-SA-2021-1074)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED15 / SLES15 Security Update : spice-gtk (SUSE-SU-2020:3071-1)

This update for spice-gtk fixes the following issues : CVE-2020-14355: Fixed multiple buffer overflow vulnerabilities in QUIC image decoding bsc1177158. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted...

SUSE SLES15 Security Update : spice (SUSE-SU-2020:3070-1)

This update for spice fixes the following issues : CVE-2020-14355: Fixed multiple buffer overflow vulnerabilities in QUIC image decoding bsc1177158. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to...

SUSE SLES12 Security Update : spice-gtk (SUSE-SU-2020:3085-1)

This update for spice-gtk fixes the following issues : CVE-2020-14355: Fixed multiple buffer overflow vulnerabilities in QUIC image decoding bsc1177158. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted...

MGASA-2020-0434 Updated python-pillow packages fix security vulnerabilities

Pillow before 6.2.3 and 7.x before 7.0.1 has multiple out-of-bounds reads in libImaging/FliDecode.c CVE-2020-10177. In libImaging/PcxDecode.c in Pillow before 6.2.3 and 7.x before 7.0.1, an out-of-bounds read can occur when reading PCX files where state-shuffle is instructed to read beyond...

MGASA-2020-0408 Updated spice and spice-gtk packages fix a security vulnerability

Multiple buffer overflow vulnerabilities were found in the QUIC image decoding process of the SPICE remote display system, before spice-0.14.2-1. Both the SPICE client spice-gtk and server are affected by these flaws. These flaws allow a malicious client or server to send specially crafted messag...

Updated spice and spice-gtk packages fix a security vulnerability

Multiple buffer overflow vulnerabilities were found in the QUIC image decoding process of the SPICE remote display system, before spice-0.14.2-1. Both the SPICE client spice-gtk and server are affected by these flaws. These flaws allow a malicious client or server to send specially crafted messag...

openSUSE Security Update : spice (openSUSE-2020-1802)

This update for spice fixes the following issues : - CVE-2020-14355: Fixed multiple buffer overflow vulnerabilities in QUIC image decoding bsc1177158. This update was imported from the SUSE:SLE-15-SP2:Update update project. C Tenable Network Security, Inc. The descriptive text and package checks ...

Debian DLA-2428-1 : spice-gtk security update

Multiple buffer overflow vulnerabilities were found in the QUIC image decoding process of the SPICE remote display system. Both the SPICE client spice-gtk and server are affected by these flaws. These flaws allow a malicious client or server to send specially crafted messages that, when processed...

[SECURITY] [DLA 2428-1] spice-gtk security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-2428-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta November 01, 2020 https://wiki.debian.org/LTS -...

OPENSUSE-SU-2020:1803-1 Security update for spice-gtk

This update for spice-gtk fixes the following issues: - CVE-2020-14355: Fixed multiple buffer overflow vulnerabilities in QUIC image decoding bsc1177158. This update was imported from the SUSE:SLE-15-SP2:Update update project...

OPENSUSE-SU-2020:1802-1 Security update for spice

This update for spice fixes the following issues: - CVE-2020-14355: Fixed multiple buffer overflow vulnerabilities in QUIC image decoding bsc1177158. This update was imported from the SUSE:SLE-15-SP2:Update update project...

Security update for spice (moderate)

openSUSE Security Update: Security update for spice Announcement ID: openSUSE-SU-2020:1802-1 Rating: moderate References: 1177158 Cross-References: CVE-2020-14355 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for spice fixe...

Security update for spice-gtk (moderate)

openSUSE Security Update: Security update for spice-gtk Announcement ID: openSUSE-SU-2020:1803-1 Rating: moderate References: 1177158 Cross-References: CVE-2020-14355 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for...

EulerOS 2.0 SP5 : ImageMagick (EulerOS-SA-2020-2248)

According to the version of the ImageMagick packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - ImageMagick 7.0.9-27 through 7.0.10-17 has a heap-based buffer over-read in BlobToStringInfo in MagickCore/string.c during TIFF image...

SUSE-SU-2020:3085-1 Security update for spice-gtk

This update for spice-gtk fixes the following issues: - CVE-2020-14355: Fixed multiple buffer overflow vulnerabilities in QUIC image decoding bsc1177158...

SUSE-SU-2020:3084-1 Security update for spice

This update for spice fixes the following issues: - CVE-2020-14355: Fixed multiple buffer overflow vulnerabilities in QUIC image decoding bsc1177158...

SUSE-SU-2020:3071-1 Security update for spice-gtk

This update for spice-gtk fixes the following issues: - CVE-2020-14355: Fixed multiple buffer overflow vulnerabilities in QUIC image decoding bsc1177158...