Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Debian LTS Advisory ([SECURITY] [DLA 1489-1] spice-gtk security update)
Information
Severity
Severity
Family
Family
CVSSv2 Base
CVSSv2 Base
CVSSv2 Vector
CVSSv2 Vector
Solution Type
Solution Type
Created
Created
Modified
Modified
Summary
A vulnerability was discovered in SPICE before version 0.14.1 where the generated code used for demarshalling messages lacked sufficient bounds checks. A malicious client or server, after authentication, could send specially crafted messages to its peer which would result in a crash or, potentially, other impacts. The issue has been fixed by upstream by bailing out with an error if the pointer to the start of some message data is strictly greater than the pointer to the end of the message data. The above issue and fix have already been announced for the "spice" Debian package (as DLA-1486-1 [1]). This announcement is about the "spice-gtk" Debian package (which ships some copies of code from the "spice" package, where the fix of this issue had to be applied). [1] https://lists.debian.org/debian-lts-announce/2018/08/msg00037.html
Affected Software
Affected Software
spice-gtk on Debian Linux
Detection Method
Detection Method
This check tests the installed software version using the apt package manager.
Solution
Solution
For Debian 8 'Jessie', this problem has been fixed in version 0.25-1+deb8u1. We recommend that you upgrade your spice-gtk packages.