Branches for Wheezy

Name Status Last Modified Last Commit
lp:debian/wheezy/spice 1 Development 2014-01-03 17:52:06 UTC 2014-01-03
8. * Non-maintainer upload by the Securi...

Author: Salvatore Bonaccorso
Revision Date: 2014-01-03 17:52:06 UTC

* Non-maintainer upload by the Security Team.
* Add CVE-2013-4130.patch patch.
  CVE-2013-4130: unsafe clients ring access abort. An user able to
  initiate spice connection to the guest could use this flaw to crash the
  guest. (Closes: #717030)
* Add CVE-2013-4282.patch patch.
  CVE-2013-4282: Fix buffer overflow when decrypting client SPICE ticket.
  A remote user able to initiate a SPICE connection to an application
  acting as a SPICE server could use this flaw to crash the application.
  (Closes: #728314)

11 of 1 result