Univention Bugzilla – Bug 48594
spice: Multiple issues (4.3)
Last modified: 2019-02-06 12:35:54 CET
New Debian spice 0.12.8-2.1+deb9u3 fixes: This update addresses the following issue: * Off-by-one error in array access in spice/server/memslot.c (CVE-2019-3813)
--- mirror/ftp/4.3/unmaintained/4.3-3/source/spice_0.12.8-2.1+deb9u2.dsc +++ apt/ucs_4.3-0-errata4.3-3/source/spice_0.12.8-2.1+deb9u3.dsc @@ -1,3 +1,8 @@ +0.12.8-2.1+deb9u3 [Sun, 27 Jan 2019 17:28:58 +0100] Salvatore Bonaccorso <carnil@debian.org>: + + * Non-maintainer upload by the Security Team. + * memslot: Fix off-by-one error in group/slot boundary check (CVE-2019-3813) + 0.12.8-2.1+deb9u2 [Sun, 07 Oct 2018 08:51:43 +0200] Salvatore Bonaccorso <carnil@debian.org>: * Non-maintainer upload by the Security Team. <http://10.200.17.11/4.3-3/#5885975810583742671>
OK: yaml OK: announce_errata OK: patch OK: piuparts [4.3-3] b7a7871d0c Bug #48594: spice 0.12.8-2.1+deb9u3 doc/errata/staging/spice.yaml | 12 ++++++++++++ 1 file changed, 12 insertions(+)
<http://errata.software-univention.de/ucs/4.3/419.html>