libspice-server-devel-0.12.8-2.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:10393 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z libspice-server-devel-0.12.8-2.1 on GA media These are all security issues fixed in the libspice-server-devel-0.12.8-2.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-10393 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:10393 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2015-3247/ SUSE CVE CVE-2015-3247 page https://www.suse.com/security/cve/CVE-2015-5260/ SUSE CVE CVE-2015-5260 page https://www.suse.com/security/cve/CVE-2015-5261/ SUSE CVE CVE-2015-5261 page https://www.suse.com/security/cve/CVE-2016-0749/ SUSE CVE CVE-2016-0749 page https://www.suse.com/security/cve/CVE-2016-2150/ SUSE CVE CVE-2016-2150 page openSUSE Tumbleweed libspice-server-devel-0.12.8-2.1 libspice-server1-0.12.8-2.1 spice-client-0.12.8-2.1 libspice-server-devel-0.12.8-2.1 as a component of openSUSE Tumbleweed libspice-server1-0.12.8-2.1 as a component of openSUSE Tumbleweed spice-client-0.12.8-2.1 as a component of openSUSE Tumbleweed Race condition in the worker_update_monitors_config function in SPICE 0.12.4 allows a remote authenticated guest user to cause a denial of service (heap-based memory corruption and QEMU-KVM crash) or possibly execute arbitrary code on the host via unspecified vectors. CVE-2015-3247 openSUSE Tumbleweed:libspice-server-devel-0.12.8-2.1 openSUSE Tumbleweed:libspice-server1-0.12.8-2.1 openSUSE Tumbleweed:spice-client-0.12.8-2.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-3247.html CVE-2015-3247 https://bugzilla.suse.com/944460 SUSE Bug 944460 Heap-based buffer overflow in SPICE before 0.12.6 allows guest OS users to cause a denial of service (heap-based memory corruption and QEMU-KVM crash) or possibly execute arbitrary code on the host via QXL commands related to the surface_id parameter. CVE-2015-5260 openSUSE Tumbleweed:libspice-server-devel-0.12.8-2.1 openSUSE Tumbleweed:libspice-server1-0.12.8-2.1 openSUSE Tumbleweed:spice-client-0.12.8-2.1 moderate 5.8 AV:N/AC:M/Au:N/C:N/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-5260.html CVE-2015-5260 https://bugzilla.suse.com/944787 SUSE Bug 944787 Heap-based buffer overflow in SPICE before 0.12.6 allows guest OS users to read and write to arbitrary memory locations on the host via guest QXL commands related to surface creation. CVE-2015-5261 openSUSE Tumbleweed:libspice-server-devel-0.12.8-2.1 openSUSE Tumbleweed:libspice-server1-0.12.8-2.1 openSUSE Tumbleweed:spice-client-0.12.8-2.1 moderate 3.3 AV:L/AC:M/Au:N/C:P/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-5261.html CVE-2015-5261 https://bugzilla.suse.com/948976 SUSE Bug 948976 https://bugzilla.suse.com/982386 SUSE Bug 982386 The smartcard interaction in SPICE allows remote attackers to cause a denial of service (QEMU-KVM process crash) or possibly execute arbitrary code via vectors related to connecting to a guest VM, which triggers a heap-based buffer overflow. CVE-2016-0749 openSUSE Tumbleweed:libspice-server-devel-0.12.8-2.1 openSUSE Tumbleweed:libspice-server1-0.12.8-2.1 openSUSE Tumbleweed:spice-client-0.12.8-2.1 moderate 6 AV:L/AC:H/Au:S/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-0749.html CVE-2016-0749 https://bugzilla.suse.com/982385 SUSE Bug 982385 https://bugzilla.suse.com/982386 SUSE Bug 982386 SPICE allows local guest OS users to read from or write to arbitrary host memory locations via crafted primary surface parameters, a similar issue to CVE-2015-5261. CVE-2016-2150 openSUSE Tumbleweed:libspice-server-devel-0.12.8-2.1 openSUSE Tumbleweed:libspice-server1-0.12.8-2.1 openSUSE Tumbleweed:spice-client-0.12.8-2.1 moderate 6.6 AV:L/AC:M/Au:S/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-2150.html CVE-2016-2150 https://bugzilla.suse.com/982385 SUSE Bug 982385 https://bugzilla.suse.com/982386 SUSE Bug 982386