Vigil@nce - SPICE: two vulnerabilities
April 2017 by Vigil@nce
This bulletin was written by Vigil@nce : https://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can use several vulnerabilities of SPICE.
– Impacted products: Debian, Fedora, openSUSE Leap, RHEL, SUSE Linux
Enterprise Desktop, SLES, Ubuntu.
– Severity: 2/4.
– Creation date: 06/02/2017.
DESCRIPTION OF THE VULNERABILITY
Several vulnerabilities were announced in SPICE.
An attacker can generate a buffer overflow via
main_channel_alloc_msg_rcv_buf, in order to trigger a denial of
service, and possibly to run code. [severity:2/4; CVE-2016-9577]
An attacker can trigger a fatal error via Message, in order to
trigger a denial of service. [severity:2/4; CVE-2016-9578]
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
https://vigilance.fr/vulnerability/SPICE-two-vulnerabilities-21763