vulnerability

Red Hat: CVE-2016-2150: Important: spice security update ((Multiple Advisories))

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:L/AC:L/Au:N/C:P/I:P/A:N)	Jun 6, 2016	Jul 29, 2016	Jan 17, 2018

Severity

CVSS

(AV:L/AC:L/Au:N/C:P/I:P/A:N)

Published

Jun 6, 2016

Added

Jul 29, 2016

Modified

Jan 17, 2018

Description

SPICE allows local guest OS users to read from or write to arbitrary host memory locations via crafted primary surface parameters, a similar issue to CVE-2015-5261.

Solutions

redhat-upgrade-spice-debuginforedhat-upgrade-spice-serverredhat-upgrade-spice-server-debuginforedhat-upgrade-spice-server-devel

References

DEBIAN-DLA-531-1
DEBIAN-DSA-3596
UBUNTU-USN-3014-1
REDHAT-RHSA-2016:1204
REDHAT-RHSA-2016:1205
GENTOO-GLSA-201606-05
NVD-CVE-2016-2150

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today