spice 0.12.4-0nocelt2ubuntu1.3 source package in Ubuntu
Changelog
spice (0.12.4-0nocelt2ubuntu1.3) trusty-security; urgency=medium
* SECURITY UPDATE: denial of service and possible code execution via
memory allocation flaw in smartcard interaction
- debian/patches/CVE-2016-0749/*.patch: add a ref to item and allocate
msg with the expected size in server/smartcard.c.
- CVE-2016-0749
* SECURITY UPDATE: host memory access from guest with invalid primary
surface parameters
- debian/patches/CVE-2016-2150/*.patch: create a function to validate
surface parameters in server/red_parse_qxl.*, improve primary surface
parameter checks in server/red_worker.c.
- CVE-2016-2150
* Added two extra commits to previous security update:
- 0001-worker-validate-correctly-surfaces.patch
- 0002-worker-avoid-double-free-or-double-create-of-surface.patch
-- Marc Deslauriers <email address hidden> Fri, 10 Jun 2016 10:58:27 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Trusty
- Original maintainer:
- Ubuntu Developers
- Architectures:
- i386 amd64
- Section:
- misc
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| spice_0.12.4.orig.tar.bz2 | 1.6 MiB | cf063e7df42e331a835529d2f613d8a01f8cb2963e8edaadf73a8d65c46fb387 |
| spice_0.12.4-0nocelt2ubuntu1.3.debian.tar.gz | 37.9 KiB | 0cd425901455c5b255ed89f0c236ae00f6ad37e0bb45ef03ae10c8b66f7b41e3 |
| spice_0.12.4-0nocelt2ubuntu1.3.dsc | 2.3 KiB | 67021c129311eab4a86b70d20e023be138091f1520fa380efee185489c671535 |
Available diffs
Binary packages built by this source
- libspice-server-dev: Header files and development documentation for spice-server
The Simple Protocol for Independent Computing Environments (SPICE) is
a remote display system built for virtual environments which allows
you to view a computing 'desktop' environment not only on the machine
where it is running, but from anywhere on the Internet and from a wide
variety of machine architectures.
.
This package contains the header files, static libraries and development
documentation for spice-server.
- libspice-server1: Implements the server side of the SPICE protocol
The Simple Protocol for Independent Computing Environments (SPICE) is
a remote display system built for virtual environments which allows
you to view a computing 'desktop' environment not only on the machine
where it is running, but from anywhere on the Internet and from a wide
variety of machine architectures.
.
This package contains the run-time libraries for any application that
wishes to be a SPICE server.
- libspice-server1-dbgsym: debug symbols for package libspice-server1
The Simple Protocol for Independent Computing Environments (SPICE) is
a remote display system built for virtual environments which allows
you to view a computing 'desktop' environment not only on the machine
where it is running, but from anywhere on the Internet and from a wide
variety of machine architectures.
.
This package contains the run-time libraries for any application that
wishes to be a SPICE server.
- spice-client: Implements the client side of the SPICE protocol
The Simple Protocol for Independent Computing Environments (SPICE) is
a remote display system built for virtual environments which allows
you to view a computing 'desktop' environment not only on the machine
where it is running, but from anywhere on the Internet and from a wide
variety of machine architectures.
.
This package contains the SPICE client application.
- spice-client-dbgsym: debug symbols for package spice-client
The Simple Protocol for Independent Computing Environments (SPICE) is
a remote display system built for virtual environments which allows
you to view a computing 'desktop' environment not only on the machine
where it is running, but from anywhere on the Internet and from a wide
variety of machine architectures.
.
This package contains the SPICE client application.
