Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2015-3247

Race condition in the worker_update_monitors_config function in SPICE 0.12.4 allows a remote authenticated guest user to cause a denial of service (heap-based memory corruption and QEMU-KVM crash) or possibly execute arbitrary code on the host via unspecified vectors.

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.securitytra...
MISC: http://www.securitytra...
MISC: http://www.securitytra...
MISC: http://www.debian.org/...
MISC: http://rhn.redhat.com/...
MISC: http://rhn.redhat.com/...
MISC: http://rhn.redhat.com/...
MISC: http://www.ubuntu.com/...
MISC: http://lists.freedeskt...
MISC: http://lists.opensuse....

Launchpad.net

CVE 2015-3247

Related bugs

References