Download
| Alert*
[3.6] spice: Off-by-one error in array access in spice/server/memslot.c (CVE-2019-3813)
spice versions 0.5.2 through 0.14.1 are vulnerable to an out-of-bounds read due to an off-by-one error in memslot_get_virt. This may lead to a denial-of-service, or, in the worst case, code-execution by unauthenticated attackers. Fixed In Version:¶ spice 0.14.2
|