Frediano Ziglio discovered that Spice incorrectly handled certain client messages. A remote attacker could use this issue to cause Spice to crash, resulting in a denial of service, or possibly execute arbitrary code.
{ "availability": "No subscription required", "binaries": [ { "binary_name": "libspice-server-dev", "binary_version": "0.12.4-0nocelt2ubuntu1.4" }, { "binary_name": "libspice-server1", "binary_version": "0.12.4-0nocelt2ubuntu1.4" }, { "binary_name": "libspice-server1-dbgsym", "binary_version": "0.12.4-0nocelt2ubuntu1.4" }, { "binary_name": "spice-client", "binary_version": "0.12.4-0nocelt2ubuntu1.4" }, { "binary_name": "spice-client-dbgsym", "binary_version": "0.12.4-0nocelt2ubuntu1.4" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_name": "libspice-server-dev", "binary_version": "0.12.6-4ubuntu0.2" }, { "binary_name": "libspice-server-dev-dbgsym", "binary_version": "0.12.6-4ubuntu0.2" }, { "binary_name": "libspice-server1", "binary_version": "0.12.6-4ubuntu0.2" }, { "binary_name": "libspice-server1-dbg", "binary_version": "0.12.6-4ubuntu0.2" }, { "binary_name": "libspice-server1-dbgsym", "binary_version": "0.12.6-4ubuntu0.2" } ] }