CVE-2016-9578

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2016-9578
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-9578.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2016-9578
Downstream
Related
Published
2018-07-27T21:29:00Z
Modified
2025-07-01T03:34:50.605683Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

A vulnerability was discovered in SPICE before 0.13.90 in the server's protocol handling. An attacker able to connect to the SPICE server could send crafted messages which would cause the process to crash.

References

Affected packages

Alpine:v3.10 / spice

Package

Name
spice
Purl
pkg:apk/alpine/spice?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.12.8-r3

Affected versions

0.*

0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2

Alpine:v3.11 / spice

Package

Name
spice
Purl
pkg:apk/alpine/spice?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.12.8-r3

Affected versions

0.*

0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2

Alpine:v3.12 / spice

Package

Name
spice
Purl
pkg:apk/alpine/spice?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.12.8-r3

Affected versions

0.*

0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2

Alpine:v3.13 / spice

Package

Name
spice
Purl
pkg:apk/alpine/spice?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.12.8-r3

Affected versions

0.*

0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2

Alpine:v3.14 / spice

Package

Name
spice
Purl
pkg:apk/alpine/spice?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.12.8-r3

Affected versions

0.*

0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2

Alpine:v3.15 / spice

Package

Name
spice
Purl
pkg:apk/alpine/spice?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.12.8-r3

Affected versions

0.*

0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2

Alpine:v3.16 / spice

Package

Name
spice
Purl
pkg:apk/alpine/spice?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.12.8-r3

Affected versions

0.*

0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2

Alpine:v3.17 / spice

Package

Name
spice
Purl
pkg:apk/alpine/spice?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.12.8-r3

Affected versions

0.*

0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2

Alpine:v3.18 / spice

Package

Name
spice
Purl
pkg:apk/alpine/spice?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.12.8-r3

Affected versions

0.*

0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2

Alpine:v3.19 / spice

Package

Name
spice
Purl
pkg:apk/alpine/spice?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.12.8-r3

Affected versions

0.*

0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2

Alpine:v3.20 / spice

Package

Name
spice
Purl
pkg:apk/alpine/spice?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.12.8-r3

Affected versions

0.*

0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2

Alpine:v3.21 / spice

Package

Name
spice
Purl
pkg:apk/alpine/spice?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.12.8-r3

Affected versions

0.*

0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2

Alpine:v3.22 / spice

Package

Name
spice
Purl
pkg:apk/alpine/spice?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.12.8-r3

Affected versions

0.*

0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2

Alpine:v3.7 / spice

Package

Name
spice
Purl
pkg:apk/alpine/spice?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.12.8-r3

Affected versions

0.*

0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2

Alpine:v3.8 / spice

Package

Name
spice
Purl
pkg:apk/alpine/spice?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.12.8-r3

Affected versions

0.*

0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2

Alpine:v3.9 / spice

Package

Name
spice
Purl
pkg:apk/alpine/spice?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.12.8-r3

Affected versions

0.*

0.10.0-r0
0.10.0-r1
0.10.0-r2
0.10.1-r0
0.12.0-r0
0.12.0-r1
0.12.2-r0
0.12.2-r1
0.12.3-r0
0.12.4-r0
0.12.5-r0
0.12.5-r1
0.12.5-r2
0.12.6-r0
0.12.6-r1
0.12.7-r0
0.12.7-r1
0.12.8-r0
0.12.8-r1
0.12.8-r2

Debian:11 / spice

Package

Name
spice
Purl
pkg:deb/debian/spice?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.12.8-2.1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Debian:12 / spice

Package

Name
spice
Purl
pkg:deb/debian/spice?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.12.8-2.1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Debian:13 / spice

Package

Name
spice
Purl
pkg:deb/debian/spice?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.12.8-2.1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Git / gitlab.freedesktop.org/spice/spice

Affected ranges

Type
GIT
Repo
https://gitlab.freedesktop.org/spice/spice
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
34dff543bef7a5201f41c72353a65840bd37c275

Affected versions

0.*

0.10.0
0.11.0
0.11.3
0.12.0
0.5.2
0.5.3
0.6.0
0.6.1
0.6.2
0.6.3
0.9.0
0.9.1

v0.*

v0.12.0
v0.12.2
v0.12.3
v0.12.4
v0.12.5
v0.12.6
v0.13.0
v0.13.1
v0.13.2
v0.13.3