Multiple integer overflow and buffer overflow issues were discovered in spice-client's handling of LZ compressed frames. A malicious server could cause the client to crash or, potentially, execute arbitrary code.
References
Link | Resource |
---|---|
https://access.redhat.com/errata/RHSA-2019:2229 | |
https://access.redhat.com/errata/RHSA-2020:0471 | |
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10893 | Issue Tracking Patch Third Party Advisory |
https://lists.freedesktop.org/archives/spice-devel/2018-July/044489.html | Mailing List Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2018-09-11T15:00:00
Updated: 2020-02-11T12:06:05
Reserved: 2018-05-09T00:00:00
Link: CVE-2018-10893
JSON object: View
NVD Information
Status : Modified
Published: 2018-09-11T15:29:00.233
Modified: 2023-02-12T23:31:44.797
Link: CVE-2018-10893
JSON object: View
Redhat Information
No data.