Spice was updated to fix three security issues. The following vulnerabilities were fixed: * CVE-2015-3247: heap corruption in the spice server * CVE-2015-5261: Guest could have accessed host memory using crafted images * CVE-2015-5260: Insufficient validation of surface_id parameter could have caused a crash