MiracleLinux 4 : spice-server-0.12.4-16.AXS4.2 (AXSA:2018-3432:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2018-3432:01 advisory. spice: Possible buffer overflow via invalid monitor configurations CVE-2017-7506 Tenable has extracted the preceding description block directly from the...

Denial Of Service (DoS)

spice is vulnerable to denial of service. An authenticated attacker is able to crash the application via invalid monitor configurations. This is due to an out-of-bounds memory access when processing malicious messages...

USN-3355-1: Spice vulnerability

Frediano Ziglio discovered that Spice incorrectly handled certain invalid monitor configurations. A remote attacker could use this issue to cause Spice to crash, resulting in a denial of service, or possibly execute arbitrary code...

USN-3355-1 spice vulnerability

Frediano Ziglio discovered that Spice incorrectly handled certain invalid monitor configurations. A remote attacker could use this issue to cause Spice to crash, resulting in a denial of service, or possibly execute arbitrary code...

SUSE SLES12 Security Update : spice (SUSE-SU-2017:1832-1)

This update for spice fixes the following issues : - CVE-2017-7506: A possible buffer overflow via invalid monitor configurations bsc1046779 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to...

SUSE SLES11 Security Update : spice (SUSE-SU-2017:1837-1)

This update for spice fixes the following issues : - CVE-2017-7506: A possible buffer overflow via invalid monitor configurations bsc1046779 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to...

SUSE-SU-2017:1836-1 Security update for spice

This update for spice fixes the following issues: - CVE-2017-7506: A possible buffer overflow via invalid monitor configurations bsc1046779...

SUSE-SU-2017:1837-1 Security update for spice

This update for spice fixes the following issues: - CVE-2017-7506: A possible buffer overflow via invalid monitor configurations bsc1046779...

USN-2736-1 spice vulnerability

Frediano Ziglio discovered that Spice incorrectly handled monitor configs. A malicious guest could use this issue to cause a denial of service, or possibly execute arbitrary code on the host as the user running the QEMU process. In the default installation, when QEMU is used with libvirt, attacke...