Main Vulnerability Database SB2019020517

SB2019020517 - Fedora 28 update for spice

Published: February 5, 2019 Updated: April 24, 2025

Security Bulletin ID SB2019020517

Severity

Medium

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Adjecent network

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Off-by-one (CVE-ID: CVE-2019-3813)

The vulnerability allows an adjacent authenticated attacker to cause DoS condition.

The vulnerability exists due to an off-by-one error in memslot_get_virt. An adjacent can trigger out-of-bounds read and cause the program to crash if it received specially crafted network traffic. In case the attacker in unauthenticated it's possible to execute arbitrary code.

Remediation

Install update from vendor's website.

References

https://bodhi.fedoraproject.org/updates/FEDORA-2019-afade40f3d