Ubuntu
spice package

spice 0.12.8-2.1ubuntu0.1 source package in Ubuntu

Changelog

spice (0.12.8-2.1ubuntu0.1) artful; urgency=medium

  * SECURITY UPDATE: buffer overflow via invalid monitor configurations
    - debian/patches/CVE-2017-7506-1.patch: disconnect when receiving
      overly big ClientMonitorsConfig in server/reds.c.
    - debian/patches/CVE-2017-7506-2.patch: avoid integer overflows
      handling monitor configuration in server/reds.c.
    - debian/patches/CVE-2017-7506-3.patch: avoid buffer overflows handling
      monitor configuration in server/reds.c.
    - CVE-2017-7506

 -- Marc Deslauriers <email address hidden>  Tue, 18 Jul 2017 13:30:46 -0400

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Artful
Original maintainer:
Ubuntu Developers
Architectures:
alpha amd64 arm64 armel armhf i386 mips64el mipsel ppc64el sh4 x32
Section:
misc
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
spice_0.12.8.orig.tar.bz2 1.2 MiB f901a5c5873d61acac84642f9eea5c4d6386fc3e525c2b68792322794e1c407d
spice_0.12.8-2.1ubuntu0.1.debian.tar.xz 11.4 KiB 2b3d4f8acb24fb95156c25d37b5ddcb6f14e5ca8f4d6c8eef15e30eb90e72fbd
spice_0.12.8-2.1ubuntu0.1.dsc 2.4 KiB fef8ec4e4a57afe17f2503e4d00acb7b1a6a15ed8a8f943be1219a00d6add0fe

View changes file

Binary packages built by this source

libspice-server-dev: No summary available for libspice-server-dev in ubuntu artful.

No description available for libspice-server-dev in ubuntu artful.

libspice-server1: No summary available for libspice-server1 in ubuntu artful.

No description available for libspice-server1 in ubuntu artful.

libspice-server1-dbgsym: No summary available for libspice-server1-dbgsym in ubuntu artful.

No description available for libspice-server1-dbgsym in ubuntu artful.