Ubuntu
spice package

spice 0.12.5-1.1ubuntu2.1 source package in Ubuntu

Changelog

spice (0.12.5-1.1ubuntu2.1) wily-security; urgency=medium

  * SECURITY UPDATE: denial of service and possible code execution via
    memory allocation flaw in smartcard interaction
    - debian/patches/CVE-2016-0749/*.patch: add a ref to item and allocate
      msg with the expected size in server/smartcard.c.
    - CVE-2016-0749
  * SECURITY UPDATE: host memory access from guest with invalid primary
    surface parameters
    - debian/patches/CVE-2016-2150/*.patch: create a function to validate
      surface parameters in server/red_parse_qxl.*, improve primary surface
      parameter checks in server/red_worker.c.
    - CVE-2016-2150
  * Added two extra commits to previous security update:
    - 0001-worker-validate-correctly-surfaces.patch
    - 0002-worker-avoid-double-free-or-double-create-of-surface.patch

 -- Marc Deslauriers <email address hidden>  Fri, 10 Jun 2016 10:54:26 -0400

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Wily
Original maintainer:
Ubuntu Developers
Architectures:
i386 amd64
Section:
misc
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Wily: [FULLYBUILT] amd64 [FULLYBUILT] i386

Downloads

File Size SHA-256 Checksum
spice_0.12.5.orig.tar.bz2 1.7 MiB 4209a20d8f67cb99a8a6ac499cfe79a18d4ca226360457954a223d6795c2f581
spice_0.12.5-1.1ubuntu2.1.debian.tar.xz 27.5 KiB ec9b002aaeec20b52b9d13a4fb61a2ab147fba803d0711e98b8289dce89fdfb1
spice_0.12.5-1.1ubuntu2.1.dsc 2.4 KiB feaac7b0ec098f182aaf6f53e0095d6f2060fb72b9e29cbbda8dc5772d359d1e

View changes file

Binary packages built by this source

libspice-server-dev: No summary available for libspice-server-dev in ubuntu wily.

No description available for libspice-server-dev in ubuntu wily.

libspice-server-dev-dbgsym: No summary available for libspice-server-dev-dbgsym in ubuntu wily.

No description available for libspice-server-dev-dbgsym in ubuntu wily.

libspice-server1: No summary available for libspice-server1 in ubuntu wily.

No description available for libspice-server1 in ubuntu wily.

libspice-server1-dbg: No summary available for libspice-server1-dbg in ubuntu wily.

No description available for libspice-server1-dbg in ubuntu wily.

libspice-server1-dbgsym: No summary available for libspice-server1-dbgsym in ubuntu wily.

No description available for libspice-server1-dbgsym in ubuntu wily.

spice-client: No summary available for spice-client in ubuntu wily.

No description available for spice-client in ubuntu wily.

spice-client-dbgsym: No summary available for spice-client-dbgsym in ubuntu wily.

No description available for spice-client-dbgsym in ubuntu wily.