Information on source package spice

Available versions

ReleaseVersion
buster0.14.0-1.3+deb10u1
bullseye0.14.3-2.1
bookworm0.15.1-1
sid0.15.1-1

Open issues

BugbusterbullseyebookwormsidDescription
CVE-2021-20201vulnerable (no DSA)fixedfixedfixedA flaw was found in spice in versions before 0.14.92. A DoS tool might ...

Resolved issues

BugDescription
CVE-2020-14355Multiple buffer overflow vulnerabilities were found in the QUIC image ...
CVE-2019-3813Spice, versions 0.5.2 through 0.14.1, are vulnerable to an out-of-boun ...
CVE-2018-10873A vulnerability was discovered in SPICE before version 0.14.1 where th ...
CVE-2017-7506A vulnerability was discovered in spice server's protocol handling. An ...
CVE-2016-9578A vulnerability was discovered in SPICE before 0.13.90 in the server's ...
CVE-2016-9577A vulnerability was discovered in SPICE before 0.13.90 in the server's ...
CVE-2016-2150A memory access flaw was found in the way spice handled certain guests ...
CVE-2016-0749A memory allocation flaw, leading to a heap-based buffer overflow, was ...
CVE-2015-5261A heap-based buffer overflow flaw was found in the way SPICE handled c ...
CVE-2015-5260A heap-based buffer overflow flaw was found in the way spice handled c ...
CVE-2015-3247A race condition flaw, leading to a heap-based memory corruption, was ...
CVE-2013-4282CVE-2013-4282 spice: stack buffer overflow in reds_handle_ticket() fun ...
CVE-2013-4130CVE-2013-4130 spice: unsafe clients ring access abort ...
CVE-2010-0430CVE-2010-0430 libspice: Insufficient guest provided memory mappings bo ...
CVE-2010-0429CVE-2010-0429 libspice: Relying on guest provided data structures to i ...
CVE-2010-0428CVE-2010-0428 libspice: Insufficient guest provided pointers validatio ...

Security announcements

DSA / DLADescription
DLA-2427-1spice - security update
DSA-4771-1spice - security update
DLA-1649-1spice - security update
DSA-4375-1spice - security update
DSA-4319-1spice - security update
DLA-1486-1spice - security update
DSA-3907-1spice - security update
DLA-825-1spice - security update
DSA-3790-1spice - security update
DLA-531-1spice - security update
DSA-3596-1spice - security update
DSA-3371-1spice - security update
DSA-3354-1spice - security update
DSA-2839-1spice - denial of service

Search for package or bug name: Reporting problems