CVE-2017-7506

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2017-7506
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-7506.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2017-7506
Downstream
Related
Published
2017-07-18T15:29:00.173Z
Modified
2026-02-02T16:22:43.948301Z
Severity
  • 8.8 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

spice versions though 0.13 are vulnerable to out-of-bounds memory access when processing specially crafted messages from authenticated attacker to the spice server resulting into crash and/or server memory leak.

References

Affected packages

Git / gitlab.freedesktop.org/spice/spice

Affected ranges

Type
GIT
Repo
https://gitlab.freedesktop.org/spice/spice
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
023d9c0d9118afe64ef17295cd683594413bd36e
Last affected
0e50cdbdc376c2c1b7ac54516168410b1f64b5cf
Last affected
1aac71d51ca6034327a91616310bb03b44c081ef
Last affected
2f4115e52eeea3039a9e230d8c79ab42691a7dbf
Last affected
36542d3ef579c7e8b6d7d9a3311f1fbb1fd0c7fa
Last affected
4a26fa01cdd1c341d5f0cca08655c9c08064b987
Last affected
4d67c41aa77b535116357023c96499949f7bfc56
Last affected
50a4db17107a65d6e2efc39ce64747ed60464d1e
Last affected
55ebd0a1c02e4323b1a8a39d59ea2c066ea45fa2
Last affected
59ff2f9221f3d78d4a12b7da6d8d6e2fb499ca10
Last affected
5c3f38fb74c6d377feee07d8e51b3770ffca8ea6
Last affected
5cbffe794f156814bc1082b2a887ce6d62e87532
Last affected
6a26992410c6bc8824e047e8a844a90d5fae46c1
Last affected
6e66366f9b05b0440df97de084ea1a92990a8874
Last affected
75dacb8d62b30cd08a3e6286d6c36e77e3e21254
Last affected
7cb2997c7134e2e08a5f00274bb4f0b212531166
Last affected
7fd8b7c971173c13842f041c1c7d51f8dc797e46
Last affected
822fea8b32c7617badee123e5fa189ae356f2f87
Last affected
8ac808918c96785f3795c253ea302f613f6413de
Last affected
998218be176b1780fff3f6f54b398c67b19b782f
Last affected
9a03fbcbe49fa9817529824999ce3c155c217289
Last affected
9e75019e653f4f79d5287ba8288726ad88f97fee
Last affected
b270fb010a3ddb432dfe6b15e4bdffa6ac086cd0
Last affected
bbc079955a078fa80cd5fb6a398c50f031ca383b
Last affected
bc5c34584168d0c6c0d1b9b49c2344f8c12c63b1
Last affected
c47bb16e9025ad3e427d480146d150acc9996063
Last affected
dc3cd205dda4d76f4afecd64d4d5abde81545e6d
Last affected
f0e5a3cb77625b32050f052a8ede7ab0ca008224
Last affected
fc2a84eb5beb4424d99121e2ed79c6bebefaf27e

Affected versions

0.*
0.5.2
0.5.3
0.6.0
0.6.1
0.6.2
0.6.3

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-7506.json"