drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Denial of Service in spice
Name: |
Denial of Service in spice |
|
ID: |
FEDORA-2013-14362 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 18 |
|
Datum: |
Do, 15. August 2013, 17:16 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4130 |
|
Applikationen: |
SPICE |
|
Originalnachricht |
Name : spice Product : Fedora 18 Version : 0.12.4 Release : 1.fc18 URL : http://www.spice-space.org/ Summary : Implements the SPICE protocol Description : The Simple Protocol for Independent Computing Environments (SPICE) is a remote display system built for virtual environments which allows you to view a computing 'desktop' environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures.
------------------------------------------------------------------------------- - Update Information:
- New upstream bug-fix release 0.12.4
- Fixes a client triggerable abort CVE-2013-4130
- Add patches from upstream git to fix sound-channel-free crash (rhbz#986407)
- Stop building spicec, it's obsolete and superseded by remote-viewer (part of virt-viewer)
------------------------------------------------------------------------------- - ChangeLog:
* Fri Aug 2 2013 Hans de Goede <hdegoede@redhat.com> - 0.12.4-1 - New upstream bug-fix release 0.12.4 - Add patches from upstream git to fix sound-channel-free crash (rhbz#986407) - Add Obsoletes for dropped spice-client sub-package * Thu May 23 2013 Christophe Fergeau <cfergeau@redhat.com> 0.12.3-2 - Stop building spicec, it's obsolete and superseded by remote-viewer (part of virt-viewer) * Tue May 21 2013 Christophe Fergeau <cfergeau@redhat.com> 0.12.3-1 - New upstream release 0.12.3 - Drop all patches (they were all upstreamed) * Mon Apr 15 2013 Hans de Goede <hdegoede@redhat.com> - 0.12.2-4 - Add fix from upstream for a crash when the guest uses RGBA (rhbz#952242) * Thu Mar 7 2013 Adam Jackson <ajax@redhat.com> 0.12.2-4 - Rebuild for new libsasl2 soname in F19 * Mon Jan 21 2013 Hans de Goede <hdegoede@redhat.com> - 0.12.2-3 - Add a number of misc. bug-fixes from upstream * Fri Dec 21 2012 Adam Tkac <atkac redhat com> - 0.12.2-2 - rebuild against new libjpeg * Thu Dec 20 2012 Hans de Goede <hdegoede@redhat.com> - 0.12.2-1 - New upstream release 0.12.2 ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #984769 - CVE-2013-4130 spice: unsafe clients ring access abort https://bugzilla.redhat.com/show_bug.cgi?id=984769 ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update spice' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|