Information on source package spice

Available versions

ReleaseVersion
buster0.14.0-1.3+deb10u1
bullseye0.14.3-2.1
bookworm0.15.1-1
trixie0.15.1-1
sid0.15.1-1

Open issues

BugbusterbullseyebookwormtrixiesidDescription
CVE-2021-20201vulnerable (no DSA)fixedfixedfixedfixedA flaw was found in spice in versions before 0.14.92. A DoS tool might ...

Resolved issues

BugDescription
CVE-2020-23793An issue was discovered in spice-server spice-server-0.14.0-6.el7_6.1. ...
CVE-2020-14355Multiple buffer overflow vulnerabilities were found in the QUIC image ...
CVE-2019-3813Spice, versions 0.5.2 through 0.14.1, are vulnerable to an out-of-boun ...
CVE-2018-10873A vulnerability was discovered in SPICE before version 0.14.1 where th ...
CVE-2017-7506spice versions though 0.13 are vulnerable to out-of-bounds memory acce ...
CVE-2016-9578A vulnerability was discovered in SPICE before 0.13.90 in the server's ...
CVE-2016-9577A vulnerability was discovered in SPICE before 0.13.90 in the server's ...
CVE-2016-2150SPICE allows local guest OS users to read from or write to arbitrary h ...
CVE-2016-0749The smartcard interaction in SPICE allows remote attackers to cause a ...
CVE-2015-5261Heap-based buffer overflow in SPICE before 0.12.6 allows guest OS user ...
CVE-2015-5260Heap-based buffer overflow in SPICE before 0.12.6 allows guest OS user ...
CVE-2015-3247Race condition in the worker_update_monitors_config function in SPICE ...
CVE-2013-4282Stack-based buffer overflow in the reds_handle_ticket function in serv ...
CVE-2013-4130The (1) red_channel_pipes_add_type and (2) red_channel_pipes_add_empty ...
CVE-2010-0430libspice, as used in QEMU-KVM in Red Hat Enterprise Virtualization Hyp ...
CVE-2010-0429libspice, as used in QEMU-KVM in the Hypervisor (aka rhev-hypervisor) ...
CVE-2010-0428libspice, as used in QEMU-KVM in the Hypervisor (aka rhev-hypervisor) ...

Security announcements

DSA / DLADescription
DLA-2427-1spice - security update
DSA-4771-1spice - security update
DLA-1649-1spice - security update
DSA-4375-1spice - security update
DSA-4319-1spice - security update
DLA-1486-1spice - security update
DSA-3907-1spice - security update
DLA-825-1spice - security update
DSA-3790-1spice - security update
DLA-531-1spice - security update
DSA-3596-1spice - security update
DSA-3371-1spice - security update
DSA-3354-1spice - security update
DSA-2839-1spice - denial of service

Search for package or bug name: Reporting problems