Heap-based buffer overflow in SPICE prior to 0.12.6 allows guest OS users to read and write to arbitrary memory locations on the host via guest QXL commands related to surface creation.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
canonical ubuntu linux 15.04 |
||
canonical ubuntu linux 14.04 |
||
redhat enterprise linux desktop 6.0 |
||
redhat enterprise linux server 6.0 |
||
redhat enterprise linux hpc node 6.0 |
||
redhat enterprise linux server eus 6.7.z |
||
redhat enterprise linux workstation 6.0 |
||
redhat enterprise linux server eus 7.1 |
||
redhat enterprise linux hpc node eus 7.1 |
||
redhat enterprise linux hpc node 7.0 |
||
redhat enterprise linux desktop 7.0 |
||
redhat enterprise linux workstation 7.0 |
||
redhat enterprise linux server 7.0 |
||
debian debian linux 7.0 |
||
debian debian linux 8.0 |
||
spice project spice |