6.9
CVSSv2

CVE-2015-3247

Published: 08/09/2015 Updated: 21/11/2024

Vulnerability Summary

Race condition in the worker_update_monitors_config function in SPICE 0.12.4 allows a remote authenticated guest user to cause a denial of service (heap-based memory corruption and QEMU-KVM crash) or possibly execute arbitrary code on the host via unspecified vectors.

Vulnerable Product Search on Vulmon Subscribe to Product

spice project spice 0.12.4

redhat enterprise linux 6.0

redhat enterprise linux 7.0

redhat enterprise linux desktop 6.0

redhat enterprise linux desktop 7.0

redhat enterprise linux hpc node 6

redhat enterprise linux hpc node 7.0

redhat enterprise linux server 6.0

redhat enterprise linux server 7.0

redhat enterprise linux workstation 6.0

redhat enterprise linux workstation 7.0

Vendor Advisories

Debian Bug report logs - #797976 spice: CVE-2015-3247: memory corruption in worker_update_monitors_config() Package: src:spice; Maintainer for src:spice is Liang Guo <guoliang@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Fri, 4 Sep 2015 06:24:02 UTC Severity: grave Tags: patch, security, ...
Spice could be made to crash or run programs ...
Frediano Ziglio of Red Hat discovered a race condition flaw in spice's worker_update_monitors_config() function, leading to a heap-based memory corruption A malicious user in a guest can take advantage of this flaw to cause a denial of service (QEMU process crash) or, potentially execute arbitrary code on the host with the privileges of the hostin ...