A vulnerability was discovered in SPICE before version 0.14.1 where the generated code used for demarshalling messages lacked sufficient bounds checks. A malicious client or server, after authentication, could send specially crafted messages to its peer which would result in a crash or, potentially, other impacts.
{
"unresolved_ranges": [
{
"extracted_events": [
{
"introduced": "14.04"
},
{
"last_affected": "14.04"
},
{
"introduced": "16.04"
},
{
"last_affected": "16.04"
},
{
"introduced": "18.04"
},
{
"last_affected": "18.04"
}
],
"cpes": [
"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*",
"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*"
],
"vendor_product": "canonical:ubuntu_linux",
"source": "CPE_STRING"
},
{
"extracted_events": [
{
"introduced": "8.0"
},
{
"last_affected": "8.0"
},
{
"introduced": "9.0"
},
{
"last_affected": "9.0"
}
],
"cpes": [
"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*"
],
"vendor_product": "debian:debian_linux",
"source": "CPE_STRING"
},
{
"extracted_events": [
{
"introduced": "6.0"
},
{
"last_affected": "6.0"
},
{
"introduced": "7.0"
},
{
"last_affected": "7.0"
}
],
"cpes": [
"cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*",
"cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*"
],
"vendor_product": "redhat:enterprise_linux_desktop",
"source": "CPE_STRING"
},
{
"extracted_events": [
{
"introduced": "6.0"
},
{
"last_affected": "6.0"
},
{
"introduced": "7.0"
},
{
"last_affected": "7.0"
}
],
"cpes": [
"cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*",
"cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*"
],
"vendor_product": "redhat:enterprise_linux_server",
"source": "CPE_STRING"
},
{
"extracted_events": [
{
"introduced": "7.6"
},
{
"last_affected": "7.6"
}
],
"cpes": [
"cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*"
],
"vendor_product": "redhat:enterprise_linux_server_aus",
"source": "CPE_STRING"
},
{
"extracted_events": [
{
"introduced": "7.5"
},
{
"last_affected": "7.5"
},
{
"introduced": "7.6"
},
{
"last_affected": "7.6"
}
],
"cpes": [
"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*",
"cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*"
],
"vendor_product": "redhat:enterprise_linux_server_eus",
"source": "CPE_STRING"
},
{
"extracted_events": [
{
"introduced": "7.6"
},
{
"last_affected": "7.6"
}
],
"cpes": [
"cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*"
],
"vendor_product": "redhat:enterprise_linux_server_tus",
"source": "CPE_STRING"
},
{
"extracted_events": [
{
"introduced": "6.0"
},
{
"last_affected": "6.0"
},
{
"introduced": "7.0"
},
{
"last_affected": "7.0"
}
],
"cpes": [
"cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*",
"cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*"
],
"vendor_product": "redhat:enterprise_linux_workstation",
"source": "CPE_STRING"
},
{
"extracted_events": [
{
"introduced": "4.0"
},
{
"last_affected": "4.0"
}
],
"cpes": [
"cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*"
],
"vendor_product": "redhat:virtualization",
"source": "CPE_STRING"
},
{
"extracted_events": [
{
"introduced": "4.0"
},
{
"last_affected": "4.0"
}
],
"cpes": [
"cpe:2.3:a:redhat:virtualization_host:4.0:*:*:*:*:*:*:*"
],
"vendor_product": "redhat:virtualization_host",
"source": "CPE_STRING"
}
]
}{
"extracted_events": [
{
"introduced": "0"
},
{
"fixed": "0.14.1"
}
],
"cpe": "cpe:2.3:a:spice_project:spice:*:*:*:*:*:*:*:*",
"source": "CPE_RANGE"
}[
{
"id": "CVE-2018-10873-361f0cc0",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"digest": {
"threshold": 0.9,
"line_hashes": [
"237635957984403839304665832143033537380",
"59811238309738357804800226278278585342",
"131838818256843794640739880791407204304"
]
},
"source": "https://gitlab.freedesktop.org/spice/spice-common@bb15d4815ab586b4c4a20f4a565970a44824c42c",
"target": {
"file": "tests/test-marshallers.c"
}
},
{
"id": "CVE-2018-10873-62f66cc9",
"deprecated": false,
"signature_version": "v1",
"signature_type": "Line",
"digest": {
"threshold": 0.9,
"line_hashes": [
"250808978833896652379186067368034359240"
]
},
"source": "https://gitlab.freedesktop.org/spice/spice-common@bb15d4815ab586b4c4a20f4a565970a44824c42c",
"target": {
"file": "tests/test-marshallers.h"
}
}
]
"2026-07-09T01:15:21Z"
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-10873.json"