OpenSUSE Linux update for spice

Published: 2019-02-14 11:23:06 | Updated: 2019-02-14
Severity Medium
Patch available YES
Number of vulnerabilities 1
CVE ID CVE-2019-3813
CVSSv3 7 [CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]
CWE ID CWE-193
Exploitation vector Local network
Public exploit N/A
Vulnerable software Opensuse
Vulnerable software versions Opensuse 15.0
Vendor URL Novell

Security Advisory

1) Off-by-one

Description

The vulnerability allows an adjacent authenticated attacker to cause DoS condition.

The vulnerability exists due to an off-by-one error in memslot_get_virt. An adjacent can trigger out-of-bounds read and cause the program to crash if it received specially crafted network traffic. In case the attacker in unauthenticated it's possible to execute arbitrary code.

Remediation

Update the affected packages.

External links

https://lists.opensuse.org/opensuse-security-announce/2019-02/msg00017.html

Back to List