DSA-3371 spice - security update
|
Información sobre el sistema
|
|
|
Software afectado |
Debian |
Descripción
|
Frediano Ziglio of Red Hat discovered several vulnerabilities in spice,a SPICE protocol client and server library. A malicious guest canexploit these flaws to cause a denial of service (QEMU process crash),execute arbitrary code on the host with the privileges of the hostingQEMU process or read and write arbitrary memory locations on the host.
More info:
https://www.debian.org/security/2015/dsa-3371 |
Identificadores estándar
|
Propiedad |
Valor |
CVE |
CVE-2015-5260 ,CVE-2015-5261 and DSA-3371. |